I'm new to Crowd and LDAP so perhaps this is a silly question - but can crowd act as an LDAP server for other services? I understand that it can read from an LDAP server if I have one already - but we don't and I'm wondering if I can use Crowd for creating one (with a nice interface)?
Crowd itself may not act as an LDAP Server out of the box, but you may as well write an extension to achieve it. There are two options:
The first was done for a Codegeist and available for a while from the Atlassian Extensions page:
https://confluence.atlassian.com/display/CROWDEXT/Crowd+as+an+LDAP+Server
Pros:
Cons:
The second approach can be achieved either embedded or standalone, and I have submitted a package to the new Marketplace (Open Source, Apache 2.0) that does it:
https://marketplace.atlassian.com/manage/plugins/net.wimpi.crowd.ldap.crowd-ldap-server
Pros:
Cons:
The URL seem to have some problems and the code on github vanished..!?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
If you refer to the crowd-ldap-server I posted, the links work perfectly fine:
https://github.com/dwimberger/crowd-ldap-server/downloads
https://github.com/dwimberger/crowd-ldap-server/
Personally verified 2 minutes ago.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Thanks for the post it seems exactly what I was looking for, it was easy to start it and configure still I got stuck at one point. I opened a bug as it would be easier to track. Maybe if could help documenting the setup after I get it working ;)
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Has anyone tried to extend this server to use crowd user attributes to store additional info to return a posixAccount object? All I need is the uidNumber/gidNumber and I'm golden. I unfortunately have 0 knowledge of java coding.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
At the moment "no". There is an existing issue you can follow: https://jira.atlassian.com/browse/CWD-1872
I am not aware of any plans of supporting this.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Sort of similar to this question - https://answers.atlassian.com/questions/3088/can-i-authenticate-linux-user-accounts-using-pam-against-crowd-or-is-crowd-an-ldap-server
In short though, it doesn't provide an LDAP interface so you can't treat it as a pure LDAP directory.
However, as crowd as an internal directory, you can use it to manage your users and groups, but the application you integrate with Crowd will need to be able to talk to crowd. i.e. be crowdified as we like to say.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Sort of similar to this question - https://answers.atlassian.com/questions/3088/can-i-authenticate-linux-user-accounts-using-pam-against-crowd-or-is-crowd-an-ldap-server
In short though, it doesn't provide an LDAP interface so you can't treat it as a pure LDAP directory.
However, as crowd as an internal directory, you can use it to manage your users and groups, but the application you integrate with Crowd will need to be able to talk to crowd. i.e. be crowdified as we like to say.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.