Configure Internal with LDAP Authentication User Directory. Save settings without test.

Hello colleagues!

I'm trying to set up an LDAP auth with internal user directory. The problem ist the certificate, that we use in our company. The name of the host, that this cert contains, does not match the name of the AD-Server. Logically is, that all connection tests fail. I've found this workaround for Confluence: https://jira.atlassian.com/browse/CONF-26049, but it just won't work for me because I just can not save the configuration of the directory in the database... I'm running the vicious circle. :)

Is there any workaround to disable the check?

4 answers

Hey Nick,

You can create the directory using non-ssl connection and then later edit it directly on the database at the table cwd_directory_attribute.

Just need to change the ldap.url (e.g. ldaps://example.com:636) and apply the workaround of this ticket: https://jira.atlassian.com/browse/CONF-26049

Cheers

Hi Tiago,

thanks for the reply! This worked perfectly for the "pure" Active Directory server. (One step closer to our goal!) I'm trying to set up an LDAP-Server with delegated Authentication, so could you tell me what should I edit in cwd_directory and cwd_directory_attribute to turn "com.atlassian.crowd.directory.MicrosoftActiveDirectory" into LDAP with delegated auth? Shouldn't be very complicated... Thanks a lot!

Hi Nick, it's good to know that there was improvement :)

So if I undertood it right, you've created an LDAP directory of type connector, but you want the delegated one.

If this is it, wouldn't be possibly for you create the delegated via UI using non-ssl and edit the database after this to make it connect through ssl?

I'm asking because turn the connector into delegated via database seems more complicated to me than doing it via user interface.

Cheers

Hi Tiago,

I've delegated the Question to the Atlassian Support Team. Hope the guys can help. I'll inform you here about any progress in this case.

I've already thought about the differences between the two connectors, and thought about playing around with two Jiras: one with direct AD-connection and one with delegated auth, just to compare two differend DBs and find out how I could "hack" it, but there should be a much more elegant way to set up a connection :D.

Best regards
Nick

Hi all!

We've solved the problem locally: https://support.atlassian.com/browse/JSP-169922

Just read my last post and have a good laugh :D.

Cheers
Nick

Suggest an answer

Log in or Join to answer
Community showcase
Sarah Schuster
Posted Jan 29, 2018 in Jira

What are common themes you've seen across successful & failed Jira Software implementations?

Hey everyone! My name is Sarah Schuster, and I'm a Customer Success Manager in Atlassian specializing in Jira Software Cloud. Over the next few weeks I will be posting discussion topics (8 total) to ...

2,832 views 12 18
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you
Atlassian Team Tour

Join us on the Team Tour

We're bringing product updates and pro tips on teamwork to ten cities around the world.

Save your spot