I would like to turn on LDAP Auth to gain the benefit of the central management of users.
However when I was testing I found the problem described in LDAP Auth - Disabled AD Users discussion.
I found that if I set Login Fallback option in LDAP to false, the authentication works one would expect with LDAP. However since we are using LDAP account for LDAP authentication we need a way to update the LDAP password. So I thought I would create one local account that could allow be to get into the administration role to solve an LDAP problem like updating the LDAP password. The local account fails once the Login Fallback is false.
Is this how the LDAP is suppose to work or is there some workaround another going into rocket chat and disabled the user manually.