Hi, I've followed https://confluence.atlassian.com/display/JIRA/Connecting+to+an+LDAP+Directory to configure LDAP for my evaluation JIRA. At section Membership Schema Settings it says that there should be two checkboxes to decide whether groups are retrieved from the user (memberOf) or looking up the group and then users (member).
My problem is that only one checkbox is there. Also, if I check LDAP configuration, it seems that both checks are false.
What's happening is that ALL my LDAP users are being synchronized into JIRA, exceeding by far number of licenses.
i see no problem here, should work this way
but as i already comment
1) additional group dn only for narrow search of groups within your directory, for narrow user search better add userfilter to corresponding field ( see screenshot )
2) AFAIK doesn't matter how many users jira synced from LDAP only members of "jira-users" group ( group giving access to jira ) are counted to licence
yes, same configuration is shown in my case. The problem is that although the checkbox is unselected (as yours), when I click on "Save & Test", the test is failing because it's ignoring the unselected "use the user membership attribute". My LDAP has not configured the "memberOf", but "member" for groups.
My configuration also tries to restrict sync'ed users to those belonging to group "staff", so "Additional Group DN" is configured to "cn=staff,ou=Group". But all users are being sync'ed.
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
We're bringing product updates and pro tips on teamwork to ten cities around the world.Save your spot