Hi,
We are currently running OSTicket and have the updated LDAP authentication plugin. Some of our users get an error of "Access Denied" when trying to log in. Out of 100+ users, only about 8 of them have this issue.
When we looked at the database, some of these users had their passwords set to NULL.
I am wondering why this would happen, and what we can do to resolve it. I've attacked an imagine showing an example of this.
Simply means the User didn't exist (or was a Guest) in the system (so they never set a local password) and when they logged in via AD it auto-registered their account (as AD users are considered pre-authorized and bypass registration restrictions) which sets their backend to ldap.client. This limits them to only authenticating via AD.
If you are using 1.18.x then the backend should be a little different than that now. It should be something like ldap.client.p1i2 (note, the 1 and 2 in this example will most likely be different for you). What I would suggest doing is finding a user that does work, copy their backend value, and replacing any _user_account backends that equal ldap.client to the working backend value.
Cheers.
