Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

We use AD for authentication. Is the Confluence password reset feature simply not going to be effective in this configuration?

Michael Finnega
Michael Finnegan January 10, 2017

We use AD to authenticate to Confluence.  Lately we've had some users unable to log in to Confluence for reasons unknown, though the password works for other AD-authenticated applications, including their workstations.  

Some have tried using Confluence Password Reset feature, but doing so invariably ends with a "network error occurred" error.  My question is, is the password reset feature even useful in this scenario?  If the reset form is unable to write changes in AD, then it's not going to work, right?

Second question:  if the affected user knows his/her AD password is correct, how then do they log in again to Confluence if AD is the authenticator of record?

Answer
Watch
Like Be the first to like this
1794 views

1 answer

1 accepted

1 vote
Answer accepted
Phil Jackson
Phil Jackson January 10, 2017

The password reset feature should work, as long as you have the AD setup to read/write changes back to AD. If you don't want that to happen, you can change it to read only and groups, and turn the external management on. Also, I would check to see that the syncs are going through successfully.

View More Comments
Michael Finnega
Michael Finnegan January 10, 2017

Thank you for your reply, Mr. Jackson.  We do have the user directories set up as: 1) LDAP Server - Microsoft Active Directory (read only with local groups); and 2) Confluence Internal Directory (Internal) in that order.  Synchronizing does appear to be happening, and I'm able to manually synchronize the LDAP connection.  Would you mind elaborating on turning external management on?  I'm not familiar with that option.  I should add that our network team is unlikely to allow read/write back to AD from Confluence.  Thanks again.

Like
Phil Jackson
Phil Jackson January 10, 2017

Not sure what version of confluence you are on, but it should be the same steps.

  1. Go to general configuration
  2. Security Configuration
  3. Click edit and check the External user management box.

That will remove the forgot password link from the confluence login page

Like
Michael Finnega
Michael Finnegan January 12, 2017

Many thanks for your replies and recommendations.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
TAGS
AUG Leaders

Atlassian Community Events

    See all events