Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

2 Directories in Crowd connected to 2 branches of LDAP - can user-group mgmt be done in JIRA

Archanaa Panda
Archanaa Panda December 2, 2012

Hi,

We are planning the deployment architecture for Atlassian suite for our enterprise.

We will have both employees and non-employee users using the Atlassian Suite.

One possible configuration that we are favoring is that we will use OpenLDAP to maintain users and groups. We will create 2 different OUs or branches in LDAP and possibly have replication at LDAP to other geographies.

Our concierge uses JIRA for creating users and groups, right now. We are wondering if we can continue to use JIRA in the below scenario to be the user interface for managing users and groups.

1 LDAP

connected user |

JIRA -----------> Crowd ---------> Dir1-------> Branch for employees

| | |

| | | | (mapping)

| |group | /

| -------| Branch for groups

| -------|

| | group| | (mapping)

| | | /

|-----------> Dir2-------> Branch for non-employees

user

Now, if we give JIRA application privileges to Crowd for creating users and therefore to LDAP, does that mean that if we create/manage users and groups and memberships they will be created properly in LDAP?

If not, what is the best user interface you can propose for easily creating users and groups and memberships in atlassian suite to the OpenLDAP Directory.

We are using JIRA, Confluence, Fisheye and doing SSO with Crowd. We are open to deploying any plugins (like Teem) that will help in managing users and groups and memberships for the whole suite.

Answer
Watch
Like Be the first to like this
589 views

2 answers

1 accepted

0 votes
Answer accepted
Archanaa Panda
Archanaa Panda December 9, 2012

Hi, I got an answer from Atlassian support on support.atlassian.com. Apparently, if we use JIRA to create the users and groups in the above scenario, where we have 2 different branches of LDAP, JIRA would create the users and groups in the first directory mapped to it only. If we want users and groups in separate branches of LDAP, we could use 2 JIRA servers instead of 1, one mapped to each directory of crowd and further to different branches of LDAP.

Reply
0 votes
Septa Cahyadiputra
Septa Cahyadiputra
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
December 2, 2012

Hi there,

If the Crowd directories configured to have the permission to write into your OpenLDAP and the LDAP user that used by Crowd to bind your LDAP server has the privilege to write into your LDAP server, your setup should work fine.

Hope it helps.

Cheers,
Septa Cahyadiputra

Reply

Suggest an answer

Log in or Sign up to answer
Crowd
Crowd
TAGS
AUG Leaders

Atlassian Community Events

    See all events