We have a 10-user license, which is adequate for our small support team (of 4). When I set up the LDAP/Active Directory connection, it appeared to list everyone in AD. Are they all considered potential users? Does our license allow anyone to enter and access/view an issue, or is that functionality limited to a certain subset of everyone in AD? Bottom line: need help setting up security for team members, and need to know if wider access is allowed under current license limits.
Potential users, yes, but active users - no.
Have a look in global permissions. That will list several of them, but what you need to look at is "can log in" and the two "administration" lines. Any account that is in any of those groups counts towards your licence. So if you are an admin, and you've got Alice and Bob in the group "jira users" (the default group for "can log in"), it doesn't matter if you can see 8,000 people, only you three count towards the license.
Whether you can view individual issues or not is determined by the project "permission scheme". Again, it's a "does user match these filters - group/role/assignee etc" type affair. See https://confluence.atlassian.com/display/JIRA/Managing+Project+Permissions
Bear in mind that if you use the group "jira users" in any permissions, then you'll be granting that permission to any user who can log in, so you probably don't want to do that if you plan to have more clever security later. Let them in another way (different group, roles, etc)
It's officially Tuesday, which means it's officially time for another tip to help you better navigate this space we call the Atlassian Community. 😄 I got a great question from community member, Sa...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs