I'm upgrading from JIRA 4.2.3.6 to 4.3.4 in my test environment in Windows server 2003 R2. In 4.2.3.6, users were authenticated either through one of two LDAP entries in the osuser.xml or in JIRA only.
When the database upgrade script ran (we're on SQL Server 2005 SP3), it moved all users who were authenticated through the 2nd LDAP osuser.xml entry and those who authenticated in JIRA only to the JIRA Internal Directory (ID) with a credential. All others, those who authenticated through the first LDAP entry in the osuser.xml, were put into the JIRA Delegated Authentication Directory (DAD) with a credential. Many of the users in the ID are associated with one or more issues in JIRA. My assumption is that the users' credentials either came from the LDAP or the password previously assigned to their JIRA internal account, correct?
The problem I'm having is that users in the ID are no longer able to log into JIRA. Do I create new user directories to point to their LDAPs as applicable? If so, I think I should use the JIRA with LDAP Authentication, Copy Users on First Login. However, according to the documentation, these users will be added to the ID where some of them already exist.
If I create multiple user directories, won't I be violating the rule of only having a user in one user directory. I've also switched the order of the ID and DAD on the User Directories page and saw no difference. External password management is on and external user management is off.
Ultimately what I want is to have all users authenticated through LDAP and for new users to be automatically added to a JIRA group that controls their access within the application.
Any and all help is appreciated!
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.