Uploaded image for project: 'Confluence Server'
  1. Confluence Server
  2. CONFSERVER-14104

Deleting users from LDAP, does not remove their 'Can-Use' permission

    XMLWordPrintable

    Details

    • Support reference count:
      6
    • Internal Complexity:
      5
    • Internal Value:
      4

      Description

      A user removed/deleted directly from LDAP is removed from the User browser, but the Can Use permissions are still associated with it, adding to the license count.
      The Can-Use permissions should be revoked for this user when removed from LDAP.

      To replicate:

      1) Delete a user directly from the LDAP server, ensuring the user is a member of a group with "Can Use" permissions
      2) Check that the user does not appear in the user browser
      3) The license count still includes this deleted user
      4) The EXTERNAL_MEMBERS still have the group memberships

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                28 Vote for this issue
                Watchers:
                22 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Last commented:
                  6 years, 46 weeks ago