Community
Products
Jira
Questions
Jira Directory LDAP configuration grabs too much information for the Directory

Jira Directory LDAP configuration grabs too much information for the Directory

Below are pictures of my network (remade for security purposes but very close).

The Jira Developers group has the list of Jira Users to be added to the jirausers group.

The Jira Developers path is:

CN=Jira Developers,OU=JiraGroups,OU=Groups,OU=Shire,OU=Middle Earth,DC=MY,DC=KINGDOM,DC=COM

My base DN should be DC=MY,DC=KINGDOM,DC=COM, correct?

And the Additional Group DN should be CN=Jira Developers,OU=JiraGroups,OU=Groups,OU=Shire,OU=Middle Earth, correct?

My biggest problem is that instead of importing the 300+ names in the Jira Developers group, the system grabs all 50,000 user objects (45K, if I filter out the disabled accounts) higher up the tree.

No configuration I use will take only the users in the group. What am I doing wrong?

1 answer

0 votes

You are not limiting the search of the users, you added the limit to the Group DN instead of the User DN, and that is why you get all 50k users. So add CN=Jira Developers,OU=JiraGroups,OU=Groups,OU=Shire,OU=Middle Earth to the User DN instead.

In my environment I do not import groups so I use a dummy group search instead as described here.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Product Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Jira Directory LDAP configuration grabs too much information for the Directory

1 answer

Suggest an answer

Was this helpful?

Thanks!

TAGS

Community showcase

Atlassian Community Events