On Tue, Oct 13, 2009 at 04:29:54PM -0700, M Brennan wrote: > We have RT authenticating to our Active Directory, M$ 2003. I am using the > ExternalAuth > functionality. When users login via LDAP, they initially had no > permissions. I fixed this by > modifying the Everyone group and allowing those users to create/edit/etc. > I would like to > tighter control over perms. > > Questions: > > 1) Can I map an Active Directory LDAP attribute to a new RT group that I > create, so that users > can inheriate perms w/o having to use the default 'Everyone' group? If so, > how is this done? > > 2) Is there another way of having LDAP auth'd users inherite permissions?
RT-Authen-ExternalAuth does not currently support adding users to groups. You can use the AutoCreate config var in your RT_SiteConfig.pm so that users are created Privileged and then you'll be able to hand permissions just to your Privileged users. -kevin
pgpUyp1wJpMLu.pgp
Description: PGP signature
_______________________________________________ http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users Community help: http://wiki.bestpractical.com Commercial support: [email protected] Discover RT's hidden secrets with RT Essentials from O'Reilly Media. Buy a copy at http://rtbook.bestpractical.com
