Hi all - it’s been a realllly long time since I stood up a new RT instance.
I’ve got the server up and running, and it’s (4.4.2) using the now-baked-in LDAP auth. We have three classes of users - admin users (essentially staff) who have admin accounts that LDAP knows are special; user-requestors who will be in LDAP; and user-requestors who are external to this org and will not be in LDAP.
I cannot for the life of me figure out how to scrip or otherwise process users at login such that they go into an appropriate group based on which of the above three possibilities they met. LDAP-authed admin users into Admin Group; LDAP-authed users into User Group; and non-LDAP users (autocreate is on) into External Group.
At the moment, users are created as either the generic top-level “Priv” or “Unpriv,” as per that global config directive; but they must be manually edited and added to groups and whatnot and that can’t be right. What am I forgetting?