Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

JIRA - Active Directory for User Directories - Cache or Active Read?

Bryan Trummer - ReleaseTEAM
Bryan Trummer - ReleaseTEAM
Community Champion
November 26, 2014

We are using Active Directory for our JIRA user directory. My question is does JIRA cache the Active Directories password and sync at a certain interval? If so is there a way to change the interval? Or does JIRA do an active read on the active directory at the time of log in to verify the username/password? We are using JIRA 6.0.8

Answer
Watch
Like Be the first to like this
814 views

2 answers

1 accepted

3 votes
Answer accepted
Stephen Gurnick
Stephen Gurnick
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 26, 2014

JIRA does not cache users' Active Directory passwords. Based on monitoring network traffic between our JIRA server and the AD controller, I noticed that JIRA goes out to the controller each time a user makes a log-in attempt.  The synchronization that occurs at a defined interval, which you can change, is for pulling in new/updated domain accounts and groups.

To sum up: if an existing user changes his/her domain password, a re-synchronization is not required.  However, if this user is placed in a new AD group, then a re-synchronization would be required for JIRA to see the change.

View More Comments
Bryan Trummer - ReleaseTEAM
Bryan Trummer - ReleaseTEAM
Community Champion
November 26, 2014

Awesome! This is what I was expecting!

Like
Reply
1 vote
Kerem Caglar _Solveka_
Kerem Caglar [Solveka]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 26, 2014

JIRA does not cache user passwords in LDAP user directories. Authentication is done by the LDAP server. 

JIRA only caches, name and email address for an account. By default every hour JIRA syncs. If you want more frequent syncs you will see the interval (with value 60) when you edit the directory in JIRA

View More Comments
Bryan Trummer - ReleaseTEAM
Bryan Trummer - ReleaseTEAM
Community Champion
November 26, 2014

Makes sense. Reason I ask is we are having users having password issues after they have changed their password in Active Directory. So my concern was maybe the password was cached and when they change their password in between the next cache it was causing this issue and having them lock out of our active directory. Since JIRA doesn't cache the passwords this would not be the cause for their issues I believe.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.