Multiple Corp Domain from LDAP

Hey @Phillip Horstmeier ,

First, which version of the Crowd are you using? 

I mean, it's possible, but it kind of depends on your directory structure and which IdP you are using (Microsoft AD or something else?). 👀

I think, for Base DN, if you have something like this: 

ou=domain1,dc=example,dc=com and ou=domain2,dc=example,dc=com

You could set the Base DN to dc=example, dc=com.
Basically, broaden the Base DN.

If that's not feasible, you could try using an LDAP filter to target some specific components. For example, to ensure only users with a valid username attribute are synced, you might use:

(&(objectCategory=Person)(sAMAccountName=*))

Note that this is relatively theoretical from my side. I've configured this only once or twice, and it was a while back, so it might need some tweaking.

Some resources that might help:

• Configuring an LDAP Directory Connector 
• How to change the number of users synchronized from LDAP to Confluence 
• Confluence to LDAP synchronization fails with 'Unable to find the username of the principal' due to LDAP configuration 

Cheers,
Tobi

Hello and welcome to the Community @Phillip Horstmeier 

Yes, but it depends on what you mean by “additional corp domain.

Another email suffix, another OU subtree, or a separate AD domain ?