After switching Confluence authentication from one LDAP directory to another users can login but group permissions are not working

I switched Confluence from one directory to another, by adding a second directory and switching the order.

LDAP directory is configured as READ-ONLY WITH LOCAL GROUPS.

  1. People can login now using the password from the new directory (account id the same)
  2. Groups are loaded and I can see membeship
  3. When I go to a specific user (from LDAP), I do see only the default group (confluence-users) assigned to him. Even if I add him to other groups, these groups are not going to show in his page.

Problems:

  • Everybody has normal access
  • People belonging to groups (local or ldap) with with admin access do still have only normal access
  • Restricted pages access is not working anymore, people who used to have access to restricted pages do not have access anymore, even if they are listed. Adding them again does not solve the problem.
  • Practically now everybody logged-in from LDAP has only normal access

1 answer

1 accepted

0 votes
Accepted answer

The cause was that the directoru sync was failing after syncing the users. It was failing a grous sync without any message in the interface.

If you have groups with identical names, you will encounter this bug !

I hope you will not encounter this bug if you cannot manage the Active Directory as you will spend many hours trying to tune the filtering in order to prevent this bug from appearing.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Friday in Off-topic

Friday Fun: Dry T-Shirt Competition - What's your BEST (Atlassian) T-Shirt!?

[Note: So it was my turn for Friday Fun and sadly I was sick thanks to rubbish sinus infection... so apologies to most of Europe and Asia for the delayed post. However, I finally got out of bed for t...

152 views 9 3
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you