Can we use ldap only for authentication, but not for authorization?

As the groups in our ldap are not suitable to map to orgs in the grafana, can we just use ldap for authentication, and manually assign org roles to each user?
As the docs says, now every time I change a user’s role in the Grafana Org. Users page, this change will be reset the next time the user logs in.


I don’t think so.

Maybe Grafana Authproxy is a better fit for you?