[rt-users] Can't find in docs: how users check ticket status?
Bob Goldstein
bobg at uic.edu
Mon Jan 5 12:18:50 EST 2004
Don't know about your environment, but in my case I have two
kinds of users, those with @uic.edu addresses (and a couple
other permutations I can recognize) and those with completely
external addresses.
Almost everyone at UIC already has accounts, with passwords
in ldap. So I've set RT to $WebExternalAuth = 1,
so that everyone using the web interface uses their ldap password.
I don't pre-create accounts (other than for consultants,
where I need to set the privs.) When a normal user logs
in via web, $WebExternalAuto=1 creates the RT account,
and when a user sends in an email, I munge the email address
to extract what I know is the correct login name (if possible)
so again I create user accounts in real time. But the passwords
are already known, so they can log in and do normal unprivleged things.
Those whose email addresses I don't recognize can't login.
bobg
>Maloney, Michael wrote:
>> Same problem here. When a new autocreated user gets added to the
>> database, their password is set to "*NO PASSWORD*", however, the "STAFF"
>> user passwords have been hashed (MD5???) and are scrambled. So I think
>> the problem is that the autocreated passwords are in the database in
>> clear text, but should be hashed. I don't care if an autocreated user's
>> password is set to "password" or whatever, just as long as I don't have
>> to do any manual steps to correct the password.
>As I've understood you want specify password for autocreated users.
>I don't know way to do it. It's just wrong and insecure.
>There was threads on the list about generating random passwords for new
>users, you have to read them.
> Good luck. Ruslan.
>>
>>
>> -----Original Message-----
>> From: Michael Marziani [mailto:marziani at oasis.com]
>> Sent: Monday, January 05, 2004 11:30 AM
>> To: rt-users at lists.bestpractical.com
>> Subject: RE: [rt-users] Can't find in docs: how users check ticket status?
>>
>>
>> Ok, I am attempting to log into the self-service as an unprivileged
>> (autocreated) user, but it will not allow this without a password. Is
>> there a default password set up for autocreated users? Thanks!
>>
>> -Michael
>>
>>
>> ------------------------------------------------------------------------
>>
>> _______________________________________________
>> rt-users mailing list
>> rt-users at lists.bestpractical.com
>> http://lists.bestpractical.com/mailman/listinfo/rt-users
>>
>> Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
>
>
>_______________________________________________
>rt-users mailing list
>rt-users at lists.bestpractical.com
>http://lists.bestpractical.com/mailman/listinfo/rt-users
>
>Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
>
More information about the rt-users
mailing list