I'm trying to get LDAP AD nested groups to work for our Bitbucket Project Creator role but it's not working. Users can logon, but they have no permissions to create projects.
I used this article as my guide, which says what I'm trying to do is possible (although the article is for Confluence):
1. We have a Domain Users group in AD with all users in the domain
2. We have a Bitbucket-PO group also, Domain Users is a group member of the Bitbucket-PO group.
3. We have nested groups enabled
Our scenario is the exact same scenario as Example 2 in the article.
According to the article, a member of the Domain Users group will inherit permissions assigned to the Bitbucket-PO group. But that is not working, we get the screen that only allows us to create personal projects.
However, if I add an AD account manually to the Bitbucket-PO group in AD, I get the permissions I need. So it appears that it doesn't like nested AD groups but flat groups work fine.
Am I missing something?
My partner and I were planning this relocation for years. It was our shared dream to try and live in another country. As children of immigrants, we already have experienced this once, but this still ...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events