Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

users not being removed from jira-users upon deactivation

Scott McDonald
Scott McDonald
Contributor
November 10, 2021

Hello,

We use LDAP to manage our AD groups, however, anytime a user needs to be added to jira-users, we utilize the default group membership functionality in the JIRA user directory, however, when it comes time to deactivating the user via LDAP, the users aren't being automatically removed from jira-users.

We have our user directory type configured to use: Microsoft Active Directory (Read Only, with Local Groups)

Does it have anything to do with that configuration?

Thanks,
Scott 

Answer
Watch
Like Be the first to like this
969 views

1 answer

0 votes
Robert Wen_Cprime_
Robert Wen_Cprime_
Community Champion
November 10, 2021

Hi @Scott McDonald 

Yes, I believe that's what's going on.  Because you're adding the user to the Jira user directory (which is a separate directory than LDAP), when you deactivate that user, it won't disappear from the Jira user directory.

You'll need to add users on a jira-users group managed by LDAP and remove the jira-users group in the Jira user directory.  If you have both user directories, the Jira user directory is the best place for admin accounts just in case something wrong happens with LDAP.

View More Comments
Scott McDonald
Scott McDonald
Contributor
November 18, 2021

Hi @Robert Wen_Cprime_ ,

 

I see what you're saying.  Any group that is managed internally by JIRA software (jira users, jira-developers, etc), will need to be managed by LDAP if I want them removed.  Will that create duplicates upon creation of the user?  

If these users are stored in a jira-users AD group, will that effectively add them to the jira-users group in JIRA software as well?  How with JIRA know which group is the correct one?

Thanks,
Scott

Like
Robert Wen_Cprime_
Robert Wen_Cprime_
Community Champion
November 18, 2021

Jira synchronizes between the user/groups on the internal directory and the external (LDAP) directory.  The synchronization automatically happens if you have it set to read/write instead of read only, with local groups)

Here's the page that talks about synchronization: https://confluence.atlassian.com/adminjiraserver/synchronizing-data-from-external-directories-938847064.html

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.