[rt-users] Unprivileged Users Change password

Kevin Falcone falcone at bestpractical.com
Fri Sep 9 11:13:57 EDT 2011


On Fri, Sep 09, 2011 at 10:09:22AM -0400, Christopher Lasater wrote:
> 	Is Modify Self supposed to grant the Unprivileged user the ability to change their information?  All I have is the password for them

The only thing an Unprivileged user can change is their password.
Giving them ModifySelf when you have an external password store isn't
really useful.

-kevin

> -----Original Message-----
> From: rt-users-bounces at lists.bestpractical.com [mailto:rt-users-bounces at lists.bestpractical.com] On Behalf Of Kevin Falcone
> Sent: Thursday, September 08, 2011 5:30 PM
> To: rt-users at lists.bestpractical.com
> Subject: Re: [rt-users] Unprivileged Users Change password
> 
> On Thu, Sep 08, 2011 at 05:20:51PM -0400, Christopher Lasater wrote:
> >                   Not sure if this is a bug, but if I have an LDAP user imported, they have the
> >    option to change their password, while the Privileged Users do not.  This is kind of unusual
> >    because you can create a local account with one password and your ldap be different and you
> >    can log in with either.  The only bad side effect with this is that if the LDAP account is
> >    disabled then they can still access RT with the second password.
> > 
> >    RT 4.0.2
> 
> This is actually a property of RT-Authen-ExternalAuth, not RT.
> It could hide that field for Unprivileged users, but you may want to just remove the ModifySelf right from Unprivileged and only grant it to Privileged.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: not available
URL: <http://lists.bestpractical.com/pipermail/rt-users/attachments/20110909/a52cf92a/attachment.sig>


More information about the rt-users mailing list