Mapping users of a particular LDAP database to a specific queue

Hello members,

We have a requirement of mapping users of a particular LDAP database to a
specific queue. This is required to enable users to have access to a
specific queue rather than all queues. The access need to be enabled for
creation of tickets and thereafter for listing his/her open and closed
tickets.

Please let me know if this is possible and steps to meet this requirement.

Maneesh Kumar

National PARAM Supercomputing Facility

HPC Infrastructure and Ecosystem Group
Centre for Development of Advanced Computing

[ C-DAC is on Social-Media too. Kindly follow us at:
Facebook: https://www.facebook.com/CDACINDIA & Twitter: @cdacindia ]

This e-mail is for the sole use of the intended recipient(s) and may
contain confidential and privileged information. If you are not the
intended recipient, please contact the sender by reply e-mail and destroy
all copies and the original message. Any unauthorized review, use,
disclosure, dissemination, forwarding, printing or copying of this email
is strictly prohibited and appropriate legal action will be taken.

My first thought is to use group rights to limit ticket/queue access. That
is, let users log in as normal, but add them to a specific queue as a
group. That way, you don’t need to worry about where they logged in from or
were authenticated from. Unless I’ve misunderstood your question, in which
case I’m sorry for the confusion.On Wed, Nov 9, 2016 at 7:30 AM, Maneesh Kumar maneeshk@cdac.in wrote:

Hello members,

We have a requirement of mapping users of a particular LDAP database to a
specific queue. This is required to enable users to have access to a
specific queue rather than all queues. The access need to be enabled for
creation of tickets and thereafter for listing his/her open and closed
tickets.

Please let me know if this is possible and steps to meet this requirement.

Maneesh Kumar

National PARAM Supercomputing Facility

HPC Infrastructure and Ecosystem Group
Centre for Development of Advanced Computing



[ C-DAC is on Social-Media too. Kindly follow us at:
Facebook: https://www.facebook.com/CDACINDIA & Twitter: @cdacindia ]

This e-mail is for the sole use of the intended recipient(s) and may
contain confidential and privileged information. If you are not the
intended recipient, please contact the sender by reply e-mail and destroy
all copies and the original message. Any unauthorized review, use,
disclosure, dissemination, forwarding, printing or copying of this email
is strictly prohibited and appropriate legal action will be taken.



RT 4.4 and RTIR training sessions, and a new workshop day!
https://bestpractical.com/training

  • Los Angeles - January 9-11 2017

Alex Hall
Automatic Distributors, IT department
ahall@autodist.com

Hi Maneesh,

We have a requirement of mapping users of a particular LDAP database
to a specific queue.

Just to clarify your first statement, do you require a particular set of
user accounts stored in LDAP
to only have access to one or more queues?

If that is the case then this can be achieved using a combination of the
External Authentication and LDAPimport
functionality, documentation can be found here:

https://docs.bestpractical.com/rt/4.4.1/authentication.html
https://docs.bestpractical.com/rt/4.4.1/RT/LDAPImport.html

The External Auth handles user import, but you need LDAP Import to
create the groups, these groups can either by static
groups or dynamically created using a LDAP search filter.

Then all you need to do is assign the correct perms for the group and
apply it to the queue.

Sorry to describe at such a high level, but the authentication system is
very flexible and with that comes
a little complexity.

Hope that helps.

Best Regards

MartinOn 2016-11-09 12:30, Maneesh Kumar wrote:

Hello members,

We have a requirement of mapping users of a particular LDAP database
to a specific queue. This is required to enable users to have access
to a specific queue rather than all queues. The access need to be
enabled for creation of tickets and thereafter for listing his/her
open and closed tickets.

Please let me know if this is possible and steps to meet this
requirement.

Maneesh Kumar

National PARAM Supercomputing Facility

HPC Infrastructure and Ecosystem Group
Centre for Development of Advanced Computing


[ C-DAC is on Social-Media too. Kindly follow us at:
Facebook: https://www.facebook.com/CDACINDIA & Twitter: @cdacindia ]

This e-mail is for the sole use of the intended recipient(s) and may
contain confidential and privileged information. If you are not the
intended recipient, please contact the sender by reply e-mail and
destroy
all copies and the original message. Any unauthorized review, use,
disclosure, dissemination, forwarding, printing or copying of this
email
is strictly prohibited and appropriate legal action will be taken.


RT 4.4 and RTIR training sessions, and a new workshop day!
https://bestpractical.com/training

  • Los Angeles - January 9-11 2017