After integrating Jaspersoft with LDAP, all LDAP users in Jasperserver have default ROLE_USER.
After changing the role for the LDAP user, once you login with that user, it will revert back to ROLE_USER.
Release : 4.2
Component : SOI ALERT MANAGEMENT
The default role for LDAP users are set in the applicationContext-externalAuth-LDAP-mt.xml file.
The setting is in this section
<bean id="mtExternalUserSetupProcessor" class="com.jaspersoft.jasperserver.multipleTenancy.security.externalAuth.processors.MTExternalUserSetupProcessor" parent="abstractExternalProcessor">
<!--Default permitted role characters; others are removed. Change regular expression to allow other chars.
<property name="permittedExternalRoleNameRegex" value="[A-Za-z0-9_]+"/>-->
<property name="userAuthorityService">
<ref bean="${bean.internalUserAuthorityService}"/>
</property>
<property name="defaultInternalRoles">
<list>
<value>ROLE_USER</value>
</list>
</property>
After making changes to this, you need to delete the current LDAP users and restart CA Business Intelligence Tomcat service.