Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can active directory accounts be mixed with local accounts? Are there any pitfalls that we need to be careful about?

TT
TT January 20, 2013

Most of our users are internal, but do you have many users external to your company.

Can JIRA use a mix of Active Directory accounts and local accounts.

Are there any pitfalls that we need to be careful about?

Answer
Watch
Like Be the first to like this
1536 views

2 answers

1 accepted

1 vote
Answer accepted
Renjith Pillai
Renjith Pillai
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 20, 2013

Yes, it can work very well. The only point that you should be aware is that if you have the same username coming from both the directories, it will result in JIRA authenticating the user with the first directory in the directory order. This can confuse at times, and as an administrator you should be aware of this.

https://confluence.atlassian.com/display/JIRA/Managing+Multiple+Directories

Reply
1 vote
Sorin Sbarnea (
Sorin Sbarnea (Citrix)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 24, 2013

They can work well BUT you need to be careful to setup some rules so they do not overlap.

Here is an example of my current implementation which is quite complex:

  • LDAP accounts contains only alphanumeric characters (that's was already company policy)
  • I added all the service accounts in crowd as LOCAL directory, all of them are stating with . (dot)
  • People can register but they are forced to create an account name that contains at least one . (dot) inside. The rule is implemented via javascript :P

If you do not set clear rules to prevent overlapping you are preparing for an administration nightmare.

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events