LDAP and ext. Auth for a better understanding

Christian_Wawrzinek · April 5, 2011, 8:06pm

Hello everyone,

as far as I know, users shouldn’t be deleted from RT (can’t be). The
reason for this is that we want to be able to reconstruct everthing
even when the user isn’t around anymore.

Is that correct so far?

My question is what happens if we have an external authorisation, like LDAP…
Does RT copy the user information to its internal database? Or how
does it make sure that the user information is stored? Since I can
easily delete users from my LDAP.

Would be great if someone could explain the method to me.

Cheers,
Chris

Nick_Kartsioukas · April 5, 2011, 8:17pm

My question is what happens if we have an external authorisation, like
LDAP…
Does RT copy the user information to its internal database? Or how
does it make sure that the user information is stored? Since I can
easily delete users from my LDAP.

RT will create a user in its own database, using the field mappings set
up in your RT-ExternalAuth section of RT-SiteConfig. It won’t store the
password locally though, it will keep hitting LDAP for login
authentication.