Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How to auto-deactivate Jira users when using LDAP integration?

Sorin Sbarnea (
Sorin Sbarnea (Citrix)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 3, 2012

I was surprised to findout that Jira users do not appear to be disabled when their accounts are disabled on LDAP.

Yes, they are not able to login anymore into Jira but still the other users do not see them as disabled users while browsing.

In fact it is even impossible to deactivate them if you are using LDAP, the option being available only when you user local directory.

The old way of "disabling" users was to remove all group memberships for the users but this is a very bad practice, as people may leave the company and return after, and sometimes this can even happen if they switch between temporary or permanent employee.

AD/LDAP has a good practice of maintaining the same account for everyone, for ever, only disabling them when people leave.

How can we solve this problem and be able to see the people left the company (diabled LDAP accounts) as disabled account in Jira.

This is essential because it allows people to reasign bugs to others when they see the "crossed" line above the disabled users.

Answer
Watch
Like saraponga likes this
6475 views

3 answers

1 accepted

3 votes
Answer accepted
Jobin Kuruvilla [Adaptavist]
Jobin Kuruvilla [Adaptavist]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 3, 2012

JIRA now has the disabling of users feature. It should only be a matter of implementing https://jira.atlassian.com/browse/JRA-24937.

That is still unResolved at the moment!

Reply
1 vote
PauloP
PauloP
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 3, 2012

Hi Sorin

This is a known improvement request:

LDAP Delegate: Synchronize with AD to disable deleted users > https://jira.atlassian.com/browse/CWD-2478

I encourage you to vote on the ticket above and add yourself as a watcher. In case of updates, you'll be notified by email.

However, perhaps you may try to create a custom BATCH script or any other customization for auto-update the JIRA memberships after monitoring LDAP actions. Don't forget to use the developers.atlassian.com as a reference regarding the JIRA structure.

Cheers,

Paulo Renato

View More Comments
Jobin Kuruvilla [Adaptavist]
Jobin Kuruvilla [Adaptavist]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 3, 2012

Actually, this is only for Crowd. You need to vote on JRA-24937 for direct JIRA LDAP/AD integrations.

Like
mlassau_atlassian
mlassau_atlassian
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
June 11, 2014

FYI:

JIRA uses the guts of Crowd as its User Management library.

Improvements to Crowd LDAP support will also turn up in JIRA.

Like Iftekharul Hoque likes this
Reply
0 votes
mlassau_atlassian
mlassau_atlassian
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
June 11, 2014

This should now be solved for AD directories: https://jira.atlassian.com/browse/JRA-30694

For other LDAP directories you should refer to: https://jira.atlassian.com/browse/JRA-34557

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events