[rt-users] SOLVED? LDAP_INVALID_CREDENTIALS error with 'ExternalAuth' extension

Mike Peachey mike.peachey at jennic.com
Fri Apr 11 04:24:31 EDT 2008

Pedro Lobo S. da Rocha wrote:
> Mike,
> Another doubt came up. How do I manage permissions for AD users in RT?

You don't really. You need to manually play with the permissions for the 
users once they have logged in for the first time. I recommend creating 
a group in RT and setting the relevant permissions on that group and 
then just add your AD users into that group once they're logged in.

> When i log in with a AD user, which permissions are given to him?

There is one way that I know of to set default permissions for users 
that get AutoCreated:

Set($AutoCreate, {Privileged => 1});

Which allows you to set whether auto-created users should be privileged 
(and other settings can go in there too), but I would be careful with it 
as you will likely find all your users will be "Auto"-Created.. but in 
any case that setting is not part of my code, it's part of RT and I'm 
not all that familiar with when/who/why/how/where auto-creating occurs 
other than ExternalAuth users.

Kind Regards,


Mike Peachey, IT
Tel: +44 114 281 2655
Fax: +44 114 281 2951
Jennic Ltd, Furnival Street, Sheffield, S1 4QT, UK
Comp Reg No: 3191371 - Registered In England

More information about the rt-users mailing list