Eric,<br><br>This is what we do and it works:<br><br>
<p class="MsoNormal"><b style="mso-bidi-font-weight:normal">Set($SenderMustExistInExternalDatabase,
1);</b></p>
<p class="MsoNormal"><b style="">Set($ValidateUserEmailAddresses,
1);</b></p><p class="MsoNormal">
</p><p class="MsoNormal"><b style="mso-bidi-font-weight:normal">Set($AutoCreate,
[Privileged , 0]);</b></p>
and for our LDAP confiuration:<br><br><b style=""><span style="font-size: 12pt; font-family: "Times New Roman","serif";">Set($AutoCreateNonExternalUsers, 1);<br><br></span></b><span style="font-size: 12pt; font-family: "Times New Roman","serif";">Now, for all this to work, you have to make sure that you aren't granting a "world of rights" to the "Unprivileged". We're very conservative about the control we grant to our users and <b>ALWAYS</b> use <i>Groups</i>. We do <b>NOT</b> grant <i>ANY</i> privileges to <i><b>individual users</b></i>. That way, only the "Privileged" get any real rights because they have to be in a group and only "Privileged" users can be in a group.<br>
<br>Hope this helps.<br><br>Kenn<br>LBNL<br></span><br><br><br><div class="gmail_quote">On Thu, Jun 9, 2011 at 10:48 AM, Eric Stoycon <span dir="ltr"><<a href="mailto:estoycon@gmail.com">estoycon@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">Kevin,<br>
I fixed the syntax of that entry.<br>
It is still failing<br>
<br>
Here is the revelent log section<br>
<br>
[Thu Jun 9 17:41:44 2011] [crit]: HasRight called with no valid object<br>
(/opt/rt3/bin/../lib/RT/Principal_Overlay.pm:322)<br>
[Thu Jun 9 17:41:44 2011] [crit]: HasRight called with no valid object<br>
(/opt/rt3/bin/../lib/RT/Principal_Overlay.pm:322)<br>
[Thu Jun 9 17:41:44 2011] [error]: RT could not load a valid user, and RT's<br>
configuration does not allow<br>
for the creation of a new user for this email<br>
(xxxx.x.xxxxxxx@xxxxxxxxxxxxx.xxx).<br>
<br>
You might need to grant 'Everyone' the right 'ReplyToTicket' for the<br>
queue Scrip. (/opt/rt3/bin/../lib/RT/Interface/Email.pm:244)<br>
[Thu Jun 9 17:41:49 2011] [crit]: : Could not send mail.<br>
(/opt/rt3/bin/../lib/RT/Interface/Email.pm:478)<br>
[Thu Jun 9 17:41:49 2011] [error]: Could not record email: Could not load a<br>
valid user (/opt/rt3/share/html/REST/1.0/NoAuth/mail-gateway:75)<br>
<div><div></div><div class="h5"><br>
On Thursday, June 09, 2011 12:51:57 PM Kevin Falcone wrote:<br>
> On Thu, Jun 09, 2011 at 12:44:35PM -0400, Eric Stoycon wrote:<br>
> > Greetings everyone,<br>
> ><br>
> ><br>
> > I've been strugging with this weeoe for a few days and frankly I am<br>
> > stumped. Here is the situation. I need to users who are not in the RT<br>
> > users table to have the ability to reply to a ticket via email. I've<br>
> > gone though the mail list and tried several of the suggestions I found<br>
> > there but none have solved my isssue.<br>
><br>
> Please post a complete log message<br>
><br>
> > This is internal auth only no external auth in place.<br>
> ><br>
> > I've tried granting 'everyone' the 'ReplyToTicket' right and it fails.<br>
> ><br>
> > Config options I have enabled<br>
> ><br>
> > Set($WebFallbackToInternalAuth, 1);<br>
> > Set($WebExternalAuto, 1);<br>
><br>
> These two only apply to external auth, if you're not using it, they<br>
> won't affect the system<br>
><br>
> > Set($AutoCreateNonExternalUsers, 1);<br>
><br>
> This only applies to RT-Authen-ExternalAuth and is unused in a vanilla RT<br>
><br>
> > Set($AutoCreate, Privileged => 0);<br>
><br>
> This syntax is invalid, fixing it might help<br>
><br>
> -kevin<br>
><br>
> > System Info<br>
> ><br>
> > OS: RHEL 4<br>
> > DB: MySql<br>
> > RT ver: 3.8.2 (I know the version is old, but I am stuck with it for<br>
> > now) Perl: 5.10.0<br>
> ><br>
> > Any pointers would be wonderful<br>
> ><br>
> > Thanks<br>
> > Eric<br>
> ><br>
> > -----BEGIN PGP SIGNATURE-----<br>
> > Version: GnuPG v1.4.11 (GNU/Linux)<br>
> ><br>
> > iQEcBAABAgAGBQJN8PhzAAoJEPxXSAAVYnY8XRwH/349Kr79jJyc4yS4j6nnih05<br>
> > w4+Nli7c9DdUZnUMczwANzRRiR6+Nud1XsJ7zSKvlDwDnV3vHPYkgNLmzpmOiKvY<br>
> > va0C9DPfpayLBRd3UIfBElIOGBy9p+tc7+6ltPxdzByOy3o6xtt3FY8A9T2h1r92<br>
> > UKyRgKCwuTcaEiri8uiQgzV8SsIilmg6z4MNOQkkgGDtdVxq8l+cNGEyoAUqMqyV<br>
> > sUQwOOr/+DEl5bSzp3K/BsNMHSY0TAaNb7nAMbjVrMXxx0zF7egzuMDIAQLo5/Av<br>
> > WhqQj4z2mq+znu0uBYpK599ZVzlDNcupAnMUyOMCmgKM3JJnNFucWwJxiklwmB8=<br>
> > =TogE<br>
> > -----END PGP SIGNATURE-----<br>
</div></div></blockquote></div><br>