Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Limit LDAP users in Confluence

Tatiane Silva
Tatiane Silva April 10, 2012

Hi everybody!

I have an integration with confluence and LDAP that i will call MyAD.

MyAD has 205 users. I have a 100 users confluence licence.

So, confluence says that i've already use all 100 users.

The problem is that i will not have ALL the users of MyAD as a Confluence user.

How can i solve that? I've already tried to deactivate the users but it seems not to be working since confluence still show me "205 signed up currently"

Any ideia??

Answer
Watch
Like Be the first to like this
3937 views

2 answers

1 accepted

0 votes
Answer accepted
Andrew Frayling
Andrew Frayling
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 10, 2012

Hi Tatiane,

They key to this is configuring your LDAP integration to only allow specific users in LDAP access to Confluence, specifically those LDAP users who are granted Confluence's "Can Use" permission as this is what counts against the license. How you do this will depend on which type of LDAP integration you are using.

If you're using what could be called "default" LDAP integration (http://confluence.atlassian.com/display/DOC/Connecting+to+an+LDAP+Directory) then you can limit the number of users by using an appropriate Base DN to limit the LDAP search to a particular brnach of the LDAP tree. If that's not possible due to the structure of the tree and you are using "Read only with Local Groups" you can leave the "Default Group Membership" blank so that users are not automatically added to the confluence-users group.

If you're using "Internal Directory with LDAP Authentication" (http://confluence.atlassian.com/display/DOC/Connecting+to+an+Internal+Directory+with+LDAP+Authentication) you can leave the "Copy User on Login" option unchecked so users are not automatically added to Confluence. That way you manually add them and grant them the "Can Use" permission and only those users will be able to login and count against the license.

Hope that helps?

Andrew.

View More Comments
Tatiane Silva
Tatiane Silva April 11, 2012

Thanks Andrew , problem solved!

Like
Reply
1 vote
Septa Cahyadiputra
Septa Cahyadiputra
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 10, 2012

Hi Tatiane,

Andrew's respond seems to explain everything you need here. I just want to add that Atlassian have documentation that may guide you to restrict LDAP users and groups:

http://confluence.atlassian.com/display/CROWD/Restricting+LDAP+Scope+for+User+and+Group+Search

Hope it helps.

Cheers,
Septa Cahyadiputra

View More Comments
Tatiane Silva
Tatiane Silva April 11, 2012

Thanks a lot!

Like Manisha Kharga _Appfire_ likes this
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events