[rt-users] Could not load valid user
Kenneth Crocker
kfcrocker at lbl.gov
Thu Jun 9 15:01:42 EDT 2011
Eric,
This is what we do and it works:
*Set($SenderMustExistInExternalDatabase, 1);*
*Set($ValidateUserEmailAddresses, 1);*
*Set($AutoCreate, [Privileged , 0]);*
and for our LDAP confiuration:
*Set($AutoCreateNonExternalUsers, 1);
*Now, for all this to work, you have to make sure that you aren't granting a
"world of rights" to the "Unprivileged". We're very conservative about the
control we grant to our users and *ALWAYS* use *Groups*. We do *NOT* grant *
ANY* privileges to *individual users*. That way, only the "Privileged" get
any real rights because they have to be in a group and only "Privileged"
users can be in a group.
Hope this helps.
Kenn
LBNL
On Thu, Jun 9, 2011 at 10:48 AM, Eric Stoycon <estoycon at gmail.com> wrote:
> Kevin,
> I fixed the syntax of that entry.
> It is still failing
>
> Here is the revelent log section
>
> [Thu Jun 9 17:41:44 2011] [crit]: HasRight called with no valid object
> (/opt/rt3/bin/../lib/RT/Principal_Overlay.pm:322)
> [Thu Jun 9 17:41:44 2011] [crit]: HasRight called with no valid object
> (/opt/rt3/bin/../lib/RT/Principal_Overlay.pm:322)
> [Thu Jun 9 17:41:44 2011] [error]: RT could not load a valid user, and
> RT's
> configuration does not allow
> for the creation of a new user for this email
> (xxxx.x.xxxxxxx at xxxxxxxxxxxxx.xxx).
>
> You might need to grant 'Everyone' the right 'ReplyToTicket' for the
> queue Scrip. (/opt/rt3/bin/../lib/RT/Interface/Email.pm:244)
> [Thu Jun 9 17:41:49 2011] [crit]: : Could not send mail.
> (/opt/rt3/bin/../lib/RT/Interface/Email.pm:478)
> [Thu Jun 9 17:41:49 2011] [error]: Could not record email: Could not load
> a
> valid user (/opt/rt3/share/html/REST/1.0/NoAuth/mail-gateway:75)
>
> On Thursday, June 09, 2011 12:51:57 PM Kevin Falcone wrote:
> > On Thu, Jun 09, 2011 at 12:44:35PM -0400, Eric Stoycon wrote:
> > > Greetings everyone,
> > >
> > >
> > > I've been strugging with this weeoe for a few days and frankly I am
> > > stumped. Here is the situation. I need to users who are not in the RT
> > > users table to have the ability to reply to a ticket via email. I've
> > > gone though the mail list and tried several of the suggestions I found
> > > there but none have solved my isssue.
> >
> > Please post a complete log message
> >
> > > This is internal auth only no external auth in place.
> > >
> > > I've tried granting 'everyone' the 'ReplyToTicket' right and it fails.
> > >
> > > Config options I have enabled
> > >
> > > Set($WebFallbackToInternalAuth, 1);
> > > Set($WebExternalAuto, 1);
> >
> > These two only apply to external auth, if you're not using it, they
> > won't affect the system
> >
> > > Set($AutoCreateNonExternalUsers, 1);
> >
> > This only applies to RT-Authen-ExternalAuth and is unused in a vanilla RT
> >
> > > Set($AutoCreate, Privileged => 0);
> >
> > This syntax is invalid, fixing it might help
> >
> > -kevin
> >
> > > System Info
> > >
> > > OS: RHEL 4
> > > DB: MySql
> > > RT ver: 3.8.2 (I know the version is old, but I am stuck with it
> for
> > > now) Perl: 5.10.0
> > >
> > > Any pointers would be wonderful
> > >
> > > Thanks
> > > Eric
> > >
> > > -----BEGIN PGP SIGNATURE-----
> > > Version: GnuPG v1.4.11 (GNU/Linux)
> > >
> > > iQEcBAABAgAGBQJN8PhzAAoJEPxXSAAVYnY8XRwH/349Kr79jJyc4yS4j6nnih05
> > > w4+Nli7c9DdUZnUMczwANzRRiR6+Nud1XsJ7zSKvlDwDnV3vHPYkgNLmzpmOiKvY
> > > va0C9DPfpayLBRd3UIfBElIOGBy9p+tc7+6ltPxdzByOy3o6xtt3FY8A9T2h1r92
> > > UKyRgKCwuTcaEiri8uiQgzV8SsIilmg6z4MNOQkkgGDtdVxq8l+cNGEyoAUqMqyV
> > > sUQwOOr/+DEl5bSzp3K/BsNMHSY0TAaNb7nAMbjVrMXxx0zF7egzuMDIAQLo5/Av
> > > WhqQj4z2mq+znu0uBYpK599ZVzlDNcupAnMUyOMCmgKM3JJnNFucWwJxiklwmB8=
> > > =TogE
> > > -----END PGP SIGNATURE-----
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110609/b13574b2/attachment.htm>
More information about the rt-users
mailing list