It is possible to set default permissions for anonymous connections using the anonymous user. I would like to be able to do the same for all authenticated users (external LDAP users).
For exemple, I would like all authenticated users have at least the same permissions than anonymous.
To do this, I suggest to do the same than Hudson: create a virtual user named "authenticated". All roles assigned to this virtual user will be automatically applied to any logged in user.