Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

MS Active Directory groups integration

Alexey I_ Kiyashko
Alexey I_ Kiyashko January 22, 2013

Hello, dear support.

I'm running JIRA 5.0.3 and I have successfully integrated my JIRA user directory with MS AD. But users are picked only from Organisational Units. For example, like this:

OU=Jira,OU=Service,OU=Groups,OU=<company>,DC=<domain>,DC=com

But my company uses a highly branched AD tree, so that i need to pick users not only from OU's but from groups too.

For that purpose i used these settings:

CN=<group_name>,OU=Jira,OU=Service,OU=Groups,OU=<company>,DC=<domain>,DC=com

The connection test runs green, but when i try to test retrieve users from that group i recieve error message

Test retrieve user : Failed

User <username> does not exist

User and group schemas are taken as recommended in this article: https://confluence.atlassian.com/display/JIRA/Connecting+to+an+LDAP+Directory

Please, tell me what i have done wrong?

Answer
Watch
Like Be the first to like this
6833 views

2 answers

1 accepted

3 votes
Answer accepted
Tiago Comasseto
Tiago Comasseto
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
January 22, 2013

Hi Alexey,

I believe the best option for your case is set your Base DN to OU=<company>,DC=<domain>,DC=com and use a filter to restrict the results.

For example, use a filter like this at the User Object Filter field to synchronize only the users that belong to the groups JIRA-Administrators and JIRA-Users:

(&amp;(objectCategory=Person)(sAMAccountName=*)(&amp;(memberOf=CN=JIRA-Administrators,OU=groups,dc=test,dc=local)|(memberOf=CN=JIRA-Users,OU=groups,dc=test,dc=local)))

You can see more details about search filter in this documentation.

I hope this information has helped.

Cheers

Reply
0 votes
Alexey I_ Kiyashko
Alexey I_ Kiyashko February 6, 2013

Just got an answer from Atlassian Support Team and it worked:

I should set Base DN to OU=<company>,DC=<domain>,DC=com

Additional User DN: OU=<user OU> (for example, in my case Additional User DN:

OU=<users_OU>, OU=Users)

Additional Group DN: CN=<group CN>,OU=<group OU> (for example, in my case Additional Group DN: CN=<group_name>,OU=Jira,OU=Groups)

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.