It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Active directory sync problems Edited

I have set up an Active Directory server directory to sync with (Read Only w/ Local Groups) - I can disable/re-enable the directory under user management, trigger a sync, and all users will appear (approximately 350). 

However the users will disappear every time, sometimes this happens immediately, sometimes it may take five minutes.

I have noticed that once I have used an account from my active directory (as an issue reporter) it is added to the internal directory.  However shortly afterwards, the username gets crossed out and has "(inactive)" listed underneath it.

EDIT:  I am trying to sync up my users as customers only.  That way they are able to log into the customer portal with their AD credentials, and I don't have to send them an invitation.

 

 

SETUP:

JIRA Service Desk 3.14.0

JIRA Core 7.11

Running JIRA on-premises (Windows Server 2016) connected to a separate database server running Server 2012 with SQL 2014.

3 answers

1 accepted

1 vote
Answer accepted

I ended up disabling the AD user directory I created, and created a new LDAP directory.  Everything is now working as it should.

@Justin W Culbreth

Have you Created groups in active directory /LDAP  in which users will belong to in oder to be able to access jira  SD (for example active_jira_users, active_confluence_users), application access must also be configured in your Jira  SD server using these groups

 

Best!

I am currently using the "domain users" AD group - I did try creating a separate group (i.e. Jira users) but I ran into the same results.

I have also assigned the accounts (within the AD group) the "service desk customer" role within the project.

The problem is that the accounts disappear shortly after I go through and grant them permissions.

@Justin W Culbrethhave you configured  the  same group  in  AD  to  be in application access  in your JIRA SD  if yes  then  it  should  synchronize without any  issues  and user should not disappear because  they are in this group  in  AD. 

The AD group that all of my users belong to is listed under the "Service Desk Customers" role for the project - 

roles.PNG

So  do you  have the same groups configure  in JIRA SD  in application  access ?

So now I'm very confused, these are customers that I am trying to sync into the system - do they require "application access" as defined by Jira?  Adding them on that page simply gives me an error regarding my license count

@Justin W CulbrethIn application access you  have the group  jira-service-desk-users  so  in AD you  should have the same group name  to  allow   syncro   and  user must be  in this  group in AD.

Right but those service-desk-users count against my licenses -I'm simply trying to sync up customer names and logins so that they can log into the customer portal using their AD credentials.

@Justin W Culbreth

Great !  that it works !  fine now, please mark  this question  as solved/accepted so   that others can  use  answer  here.

 

Best!

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted in Jira Service Desk

Tell us how you've implemented Change Management

Hello Community 👋, I'm a product manager at Atlassian, looking at improving change management capabilities across our products. In particular, we're looking at bridging the gap between Dev & ...

336 views 0 7
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you