Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,363,063
Community Members
 
Community Events
168
Community Groups

How to configure Crowd to get some groups from the Active Directory and manager the rest internally?

As usually Active Directory is read-only for all incorporated mortals... still Jira users do need to be able to use and manage groups.

As the Jira administrators time is very limited, it's i not possible to manage these groups (inability to rename them being just agravating factor).

As an workaround I managed to trick the Active Directory to get a limited number of groups inside Jira by adding them to AD mailing list that I own. This means that by (de)subscribing mailing lists from my Meta-Jira-Groups mailing list I can add and remove AD groups one by one.

The great thing about this is that each of this groups has its own managers so the management of these groups is externalized to the real owners, falling back to IT but never to Jira admins (great!).

Now the big problem is that we still need to be able to manage same groups inside jira, while having few managed on AD.

How can we do this?

1 answer

0 votes

Hi Sorin,

I think in your case the best option is use the Delegated Authentication Directory:

A Delegated Authentication directory combines the features of an internal Crowd directory with delegated LDAP authentication. This means that you can have your users authenticated via an external LDAP directory while managing the users and groups in Crowd.

I hope it helps.

Cheers

Suggest an answer

Log in or Sign up to answer
TAGS

Atlassian Community Events