Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How can I limit the users' imported from my active directory?

Phillip Davis
Phillip Davis September 10, 2018

I am trying to import users (Read Only, with Local Groups) into Jira Service Desk.  I am using an Active Directory Security Group to determine who should be able to access the Jira Service Desk portal.  However, when I set the base DN (LDAP Schema), it imports the group from AD, but not the users.  I only want it to import the users from that AD group...

I have the Base DN set to:  cn=securitygroup,ou=security groups,ou=OU,dc=domain,dc=com

I have tried setting the "Membership Schema Settings" "When finding the members of a group" as checked and unchecked. 

 

Answer
Watch
Like Be the first to like this
768 views

1 answer

1 accepted

0 votes
Answer accepted
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 10, 2018

Hello,

You need to provide a filter for the users, who should be imported to Jira. You can read more about filters here:

https://confluence.atlassian.com/kb/how-to-write-ldap-search-filters-792496933.html

View More Comments
Phillip Davis
Phillip Davis September 10, 2018

Ok, but where do I put the filter?  Add the whole line as the "Base DN", or add it to the "additional User DN"? 

Like
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 10, 2018

No, this field is called User Object Filter

Like
Phillip Davis
Phillip Davis September 10, 2018

Got it.  I have it in place, but when it synchronized, it only got one user out of three.  When I look at AD, I see three members in the group specified...

Like
Phillip Davis
Phillip Davis September 10, 2018

Finally got it.  For some reason, two of the users were not showing up when using (sAMAccountName=*), but I switched it to use the following:

Base DN:  ou=OU,dc=domain,dc=com

UserObjectFilter:  (&(objectCategory=Person)(objectclass=User)(memberOf=cn=GROUP,ou=security groups,ou=OU,dc=domain,dc=com))

GroupObjectFilter:  ((&objectCategory=Group)(cn=*group*))

Now I am getting just the three users I require.

Like
Alexey Matveev
Alexey Matveev
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 10, 2018

I am glad to hear that you found a way to do it. If you feel like my answer helped you, kindly mark my answer as accepted.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security