Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Deleted user
0 / 0 points
Next:
badges earned

Your Points Tracker
Challenges
Leaderboard
  • Global
  • Feed

Badge for your thoughts?

You're enrolled in our new beta rewards program. Join our group to get the inside scoop and share your feedback.

Join group
Recognition
Give the gift of kudos
You have 0 kudos available to give
Who do you want to recognize?
Why do you want to recognize them?
Kudos
Great job appreciating your peers!
Check back soon to give more kudos.

Past Kudos Given
No kudos given
You haven't given any kudos yet. Share the love above and you'll see it here.

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Do I need jira user directories if I use crowd?

We configured and have been using Jira's user directories.  We are now evaluating Crowd.  When we use Crowd, do we disable all user directories in Jira?   I have an ldap user directory in crowd.  Jira, however, is really mix-mash right now with some percentage of users using Jira's internal user directory, and then next in line it users ldap user directory.  We also set up for global permissions a group called jira-login, or maybe that was there already from an older version of Jira.  The jira-login group is what the user directories in JIRA were auto-assigning people to if they logged into JIra.  It is also the JIRA user directory that the ldap user directory auto-assigns well as it pulls in and synchronizes users.  I realized later this was not so great as each user in AD/ldap takes a license.  This was not a big deal with having the 10000+ license model, but ideally I would like to fix this if we are moving to using Crowd.  Useful/practical thoughts and ideas on these things would be appreciated.

2 answers

1 vote

When using JIRA with Crowd, you'd typically keep all your users in Crowd. That way, you can connect Confluence or other Atlassian products and have the same userbase available, and it's also the required configuration for SSO across JIRA, Crowd and any other applications (more info on SSO).

I didn't catch why you're considering using Crowd; if you're happy with JIRA's user directory support, don't plan on integrating any other Atlassian products, and aren't having a performance problem with JIRA then you may not get much value out of Crowd. Even if you are planning on integrating other Atlassian products, JIRA can act as a (limited) Crowd server, which will be sufficient if you only want to provide the same userbase to all Atlassian products.

Regarding sucking down all the LDAP users into JIRA: you're right, this is a less than ideal setup. In Crowd, you can restrict the scope for Users and Groups, which essentially means you can use LDAP filters to limit which users and groups will be synchronised to Crowd. JIRA's LDAP directory configuration should have a similar option, albeit likely cloaked in a slightly different UI.

We have Bamboo and are looking at Stash, and we are making our environment pretty much SSO enabled. It seemed like a good solution to cover all those things.

Okay, that's a good reason to adopt Crowd.

Personally, I keep the internal directory around with an admin-type account in case of emergency or any changes I want to do to Crowd itself, since you cannot modify the LDAP/Crowd directory you're logged in through in most cases.

So, I have the:

  • Crowd Directory (where ALL/most of my users come in through)
  • Internal Directory (used for only LDAP/Crowd tasks, local admin. Also there as a backup, should Crowd go down or have issues)

Most of the other environments I work in do something similar, with keeping the internal directory to only Admin-type minimum. This way you can manage all of your regular users in one place, then your higher-powered users or accounts from the system itself when necessary.

 

Yep, also a good setup, as long as you have the internal directory below the Crowd directory.

Indeed, that's an important thing to call out.

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Marketplace Apps & Integrations

☕️ Monday coffee with Jexo: Weekly Atlassian news roundup | 21st June 2021

Hi community 👋, as every Monday we're bringing you a quick update on what happened in the Atlassian ecosystem last week. There were a few interesting events like for example the announcement of th...

68 views 0 6
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you