[rt-users] ExternalAuth LDAP authenticating more than 1 group

Kevin Falcone falcone at bestpractical.com
Fri Sep 14 13:38:44 EDT 2012


On Mon, Sep 10, 2012 at 11:06:55AM -0400, Mike Johnson wrote:
>    When defining an LDAP service for ExternalAuth, you are allowed to set the group that a user
>    has to be a member of to authenticate to RT.
>    We have a need to have 2 different groups authenticate.
>    I think I could copy my LDAP service config, rename it, change the group, and then add it to
>    the ExternalAuthPriority list, but is there a more elegant way of doing it all within 1 LDAP
>    service definition?

Unless you can come up with an ldap searches that match both group
memberships, the solution you describe is the easiest.

Some people use perl variables to share config options across multiple
configs, but that can sometimes just obfuscate things.

-kevin
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20120914/694b3fe5/attachment.pgp>


More information about the rt-users mailing list