[rt-users] rt with openldap
Jim Rowan
jim.rowan at starcore-dsp.com
Thu Dec 11 11:09:12 EST 2003
> And second RT can't authenticate to a server.
This is incorrect, at least it is if you consider applying patches. The
full picture is complicated to explain, since RT is configurable enough
that there are many valid configations.
RT *does* need to have info about the users in its database. There are
patches available to dynamically add entries to the database when a new
user shows up that matches the LDAP authentication. We don't do that,
but instead have a script that runs periodically and refreshes the RT
database from LDAP. Our user community is fixed and has a low rate of
change, so this works ok for us.
The *authentication* can come from apache as you mention, or LDAP
authentication can be configured directly into RT -- we do the latter.
Our LDAP world is AD (at the moment) and it works fine. RT has no
passwords locally.
> RT
> uses external authentication or internal. The external
> authentication means you use the authentication of your
> webserver. So you have to look at the configuration of your
> web server to see with which directory servers you can
> authenticate to.
>
More information about the rt-users
mailing list