TLDR: role mapping defined in 'webapps/jasperserver-pro/WEB-INF/applicationContext-externalAuth-template-mt.xml' is ignored, users do not receive ROLE_SUPERUSER or ROLE_ADMINISTRATOR. Even setting the default role to ROLE_SUPERUSER for testing purpose does not work. What is the proper place? More details: I successfully authenticate users via this guide https://community.jaspersoft.com/documentation/jasperreports-authentication-cookbook/v56/authentication-based-request In server logs I can see roles are received as well: ROLE_SUPERUSER_EXT <-- this is the role I pass from external source, tried multiple names. Somewhere below that I can see the following, however I am unable to find source code for that message/ is it relevant? Mapping in applicationContext-externalAuth-template-mt.xml: I tried passing directly JasperServer roles as well with no luck. Any hints?