Force LDAP directory for JIRA login

Hi all

Can anyone tell me if they've managed to force JIRA to use a specific LDAP directory when logging in to JIRA?

My situation is as follows

We have two domains (d1 and d2). Some users log in with an account in d1 and some log in with an account to d2. Some users in d2 have an email account in d1 so they can get email on that domain address and vice versa for d1-d2. JIRA looks at d1 and then d2 when authenticating users. This means that users with their account on d2 can't log in as they don't get their password to their mail account on d1.

Things I have tried include:

  • Changing the group membership used to filter to the same group on the other domain - doesn't work as the group affects only permissions once logged in and not which directory is used for authetnication
  • Setting password for the domain account and having the user log in as the other domain - does not fit with company policy or best practise
  • Try forcing the authentication by changing the JIRA name to d2\username - would get overwritten on the next sync, as would the group memberships we'd have to create manually

Any suggestions to this problem are welcome!

Brian

1 answer

1 accepted

I'm not sure if this is the same solution that you attempted in the first point ..

* in d1 create a group with all users that must log using d2.

* in jira administration, edti configuration for d1, configure LDAP user directory. Then, in User Schema Settings, change User Object Filter adding a condition to exclude all members of the group created in the previous step.

In theory, the validation step will fail in d1 for those users, so Jira will attempt against d2 ..

HTH

Very good Alex! We thought it was limiting to the groups but I see now that the Group Settings is for downloading the groups only. Perfect! Thanks for your help

Suggest an answer

Log in or Join to answer
Community showcase
Sarah Schuster
Posted Jan 29, 2018 in Jira

What are common themes you've seen across successful & failed Jira Software implementations?

Hey everyone! My name is Sarah Schuster, and I'm a Customer Success Manager in Atlassian specializing in Jira Software Cloud. Over the next few weeks I will be posting discussion topics (8 total) to ...

2,997 views 12 18
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you
Atlassian Team Tour

Join us on the Team Tour

We're bringing product updates and pro tips on teamwork to ten cities around the world.

Save your spot