Force LDAP directory for JIRA login

Hi all

Can anyone tell me if they've managed to force JIRA to use a specific LDAP directory when logging in to JIRA?

My situation is as follows

We have two domains (d1 and d2). Some users log in with an account in d1 and some log in with an account to d2. Some users in d2 have an email account in d1 so they can get email on that domain address and vice versa for d1-d2. JIRA looks at d1 and then d2 when authenticating users. This means that users with their account on d2 can't log in as they don't get their password to their mail account on d1.

Things I have tried include:

  • Changing the group membership used to filter to the same group on the other domain - doesn't work as the group affects only permissions once logged in and not which directory is used for authetnication
  • Setting password for the domain account and having the user log in as the other domain - does not fit with company policy or best practise
  • Try forcing the authentication by changing the JIRA name to d2\username - would get overwritten on the next sync, as would the group memberships we'd have to create manually

Any suggestions to this problem are welcome!


1 answer

1 accepted

0 votes
Accepted answer

I'm not sure if this is the same solution that you attempted in the first point ..

* in d1 create a group with all users that must log using d2.

* in jira administration, edti configuration for d1, configure LDAP user directory. Then, in User Schema Settings, change User Object Filter adding a condition to exclude all members of the group created in the previous step.

In theory, the validation step will fail in d1 for those users, so Jira will attempt against d2 ..


Very good Alex! We thought it was limiting to the groups but I see now that the Group Settings is for downloading the groups only. Perfect! Thanks for your help

Suggest an answer

Log in or Sign up to answer
Community showcase
Published Nov 29, 2018 in Jira

How to set up an incident workflow from the VP of Engineering at Sentry

Hey Atlassian community, I help lead engineering at Sentry, an open-source error-tracking and monitoring tool that integrates with Jira. We started using Jira Software Cloud internally last year, a...

1,087 views 0 8
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you