Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Groups
Explore all groups
Community resources

Delegating permission to add users

TNTP
TNTP Aug 12, 2013

CONTEXT

I've been getting requests that temporary/seasonal staff be allowed restricted access to our wiki. In theory, I don't oppose this.

PROBLEM

These temporary staff members number into the several hundred and are hired independently and sporadically throughout the year by our 14+ sites around the country.

  • I don't have the capacity to create user names and passwords for all these people, as they are needed.
  • The users will need access to a different space, depending on which site hired them. The sites are best equipped to know what space that is.
  • I don't feel comfortable giving out the "account request" link because it would be a total mess. I don't know who those people are and would still have to ask which space is the right one, if it's a legitimate request, etc.

WHAT I'M LOOKING FOR

The staff members at each site know who should have access and to which space the new user needs access.

Is there any way to delegate permission to site staff to add users to a specific group in Confluence? I certainly don't want to add 14 Confluence Administrators, since that's just too much risk and way more permission than they need.


I've considered adding a new LDAP directory to handle just those users.

Thoughts?

Answer
Watch
Like Be the first to like this

1 answer

0 votes
J. Caldwell
J. Caldwell Aug 12, 2013

There are a couple of ways you could skin this cat.

LDAP - As you said. Have your LDAP repository contain some AD groups. Those AD groups would correspond to specific "functions" and would be pre-build into the sites. Membership in those groups would get you "access." If there is a org that is staffed enough and already has access to add/remove folks from those AD groups, that would be a good way to go. Existance in this AD group would get you access. You'll need to create a User Directory that matchings what you want...maybe multiple.

Internal to Confluence -

Create a group and add trusted folks to that group. They will have to be given the "Confluence Administrator" permissions through the "Global Permissions." There are plugins that give you an admin level view so you can review what has been happening.

Just my thoughts.

Reply

Suggest an answer

Log in or Sign up to answer
Community showcase
Bryce Hays
Bryce Hays
Posted Oct 24, 2018 in Confluence

Atlassian Research opportunity with Confluence templates

Do you use templates with Confluence? Take part in a remote 1-hr workshop. You'll receive USD $100 for your time!   We're looking for people to participate in a   remote 1-hr workshop...

1,026 views 15 13
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you