Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Prevent AD from updating a JIRA user field with blank

Chris Dunstall
Chris Dunstall
Contributor
November 26, 2018

In JIRA 7.1.6, we use JIRA LDAP Directory, which is connected to our AD, we use it for user accounts and authentication into JIRA. When a user logs in, it transfers the user details to JIRA. All staff are in our AD, along with temporary staff that require access to our systems. These staff (usually external contractors) are not allocated an email address with our institution and their actual contractor email address is stored within the system, however, we have a policy of not allowing non-institution email addresses in our AD.

So, when an temporary user logs into our JIRA, there's no email address to transfer. We can  manually update the JIRA account with their email address, however, AD will overwrite the email in the JIRA user details with the null/blank value in AD.

How can we stop this from occurring? I've seen in other applications that link to AD/LDAP not to update fields when it is blank in LDAP. Is this possible in JIRA?

Answer
Watch
Like Be the first to like this
395 views

1 answer

0 votes
Tom Lister
Tom Lister
Community Champion
November 26, 2018

Hi @Chris Dunstall

there  is no way to prevent Jira LDAP syncing with the AD directory as is. I’ve solved the same issue by creating a second user directory of type Delegating LDAP directory. This allows you to specify the user name and email manually but will use LDAP for authentication. It will need to be placed before your main LDAP in the ordering of user directory. You’ll need to set group memberships for users in new directory.

View More Comments
Chris Dunstall
Chris Dunstall
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
November 28, 2018

Hi @Tom,

Thanks for your answer.

The directory connected to our AD is already of type Delegated LDAP Authentication. I think it comes down to whether we want to continue using the 'Copy user on login' checkbox setting.

Like Tom Lister likes this
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.