[rt-users] Set User Password

Kurt Engle engle at 4j.lane.edu
Thu Jan 13 12:18:04 EST 2011 

Yes, the password change box does appear when I login as 'root'. I am able to set passwords for local users as the 'root' user. 

Interesting though, when I login to RT as myself via LDAP with 'SuperUser' rights, I do not see the password boxes for any users other than myself. So, I went ahead and entered a password for my account and made it that same as my LDAP retrieved password. Now, I can see password boxes for all of my users and can make changes to their passwords. Which is what I want. 

But, can someone explain the logic of the credentials checking process that is followed here? Is RT using my LDAP retrieved password or is it using an internal password in this process? If I change my password internal to RT and make it different than my LDAP retrieved password they both work and appear to be the same user. So it seems that a user's account, if it is external, can have and external and internal password. 


Kurt Engle 




From: "Kevin Falcone" <falcone at bestpractical.com> 
To: rt-users at lists.bestpractical.com 
Sent: Wednesday, January 12, 2011 3:11:45 PM 
Subject: Re: [rt-users] Set User Password 

On Wed, Jan 12, 2011 at 04:58:02PM -0600, John Alberts wrote: 
> On Wed, 12 Jan 2011 13:16:51 -0800 (PST) 
> Kurt Engle <engle at 4j.lane.edu> wrote: 
> 
> > I am wanting to use the Internal RT user database as well as an 
> > External LDAP database for user authentication. 
> 
> The only way I've found to do this is to temporarily disable LDAP auth, 
> add the users I want and set their password, and then re-enable LDAP 
> auth. One side effect, if the user you added does exist in LDAP, the 
> user can use either the LDAP password or the password you gave them to 
> login. 
> 
> Not sure if there is a better way to do this, but I couldn't find any 
> 'official' way to layer authentication and I only need to add a couple 
> special users for automation purposes, so what I did worked for me. 

RT-Authen-ExternalAuth hides the password boxes using css if the 
current user doesn't have a password, since it can't ask you to type 
in your password before changing the user's password. Does it work if 
you're logged in as the root user? 

-kevin 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110113/a8b926ef/attachment.htm>

More information about the rt-users mailing list