Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-22106

Search users from multiple OU's in LDAP

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Support Request
    • Icon: Low Low
    • None
    • 3.5
    • None

    • Linux, Active Directory authentication

      Our users in Active Directory are spread across multiple OU's, our "cn=users" only contains some basics. Is there a way to configure Confluence 3.5 User Directories > Configure LDAP Directory (Active Directory) > "Additional User DN:" to go through multiple OU's. Below is a sample of a couple of users dn

      1. Barry Smith, Ops, testlab.acme.net
        dn: CN=Barry Smith,OU=Ops,DC=testlab,DC=acme,DC=net
      1. Joe Blogs, Science, testlab.acme.net
        dn: CN=Joe Blogs,OU=Science,DC=testlab,DC=acme,DC=net

            [CONFSERVER-22106] Search users from multiple OU's in LDAP

            Tomáš Štalmach added a comment -

            Hello,

            We have a same problem as Darius had.

            We need to define 2 OUs to field Additional User DN in LDAP Schema section configuration.

            We tried write something from article Ryan Goodwin posted, but it didnt work. We tried this query "(|(OU:FirstDirectory)(OU:SecondDirectory)).

            Can someone help us, or at least tell us if this is possible? 

            Thank you

            Tomáš Štalmach added a comment - Hello, We have a same problem as Darius had. We need to define 2 OUs to field  Additional User DN in  LDAP Schema section configuration. We tried write something from article Ryan Goodwin posted, but it didnt work. We tried this query "(|(OU:FirstDirectory)(OU:SecondDirectory)). Can someone help us, or at least tell us if this is possible?  Thank you

            Ryan Goodwin (Inactive) added a comment -

            Just for reference:

            https://confluence.atlassian.com/display/DEV/How+to+write+LDAP+search+filters

            Ryan Goodwin (Inactive) added a comment - Just for reference: https://confluence.atlassian.com/display/DEV/How+to+write+LDAP+search+filters

            Sterling Windmill added a comment -

            Can you provide any information as to how this was resolved?

            We are hitting up against the same issue.

            Sterling Windmill added a comment - Can you provide any information as to how this was resolved? We are hitting up against the same issue.

            Roy Hartono [Atlassian] added a comment -

            Hi Darius,

            I have created a JIRA support ticket for you at: support.atlassian.com You should receive an email shortly containing a direct link to the support ticket.

            Please refer to the support ticket for any future correspondence relating to this issue.

            In future can you please raise support requests such as this by creating an issue in our support system, https://support.atlassian.com, not in http://jira.atlassian.com. As our support engineers respond to cases in https://support.atlassian.com, it will ensure that your problem gets addressed as quickly as possible. Also, https://support.atlassian.com is configured so that only Atlassian and you have access to the case, therefore it is a more appropriate location for us to gather any required system data and configuration from you.

            Regards

            Roy Hartono
            Atlassian Support Team.

            Roy Hartono [Atlassian] added a comment - Hi Darius, I have created a JIRA support ticket for you at: support.atlassian.com You should receive an email shortly containing a direct link to the support ticket. Please refer to the support ticket for any future correspondence relating to this issue. In future can you please raise support requests such as this by creating an issue in our support system, https://support.atlassian.com , not in http://jira.atlassian.com . As our support engineers respond to cases in https://support.atlassian.com , it will ensure that your problem gets addressed as quickly as possible. Also, https://support.atlassian.com is configured so that only Atlassian and you have access to the case, therefore it is a more appropriate location for us to gather any required system data and configuration from you. Regards Roy Hartono Atlassian Support Team.

            Deleted Account (Inactive) added a comment -

            I realise that our AD layout is probably non-standard but could not find a way for the confluence AD search (basically a crowd plugin) to search through various OU's. I ended up slowly re-arranging our AD layout to group accounts under a common OU as this eventually will be beneficial in the long run.

            This support request can be closed off if there is no other interest in this. Our AD implementation is quite small so re-arranging is possible for us.

            Deleted Account (Inactive) added a comment - I realise that our AD layout is probably non-standard but could not find a way for the confluence AD search (basically a crowd plugin) to search through various OU's. I ended up slowly re-arranging our AD layout to group accounts under a common OU as this eventually will be beneficial in the long run. This support request can be closed off if there is no other interest in this. Our AD implementation is quite small so re-arranging is possible for us.

            Deleted Account (Inactive) added a comment -

            I've tried nesting the search but I am guessing this is unsuported, examples out of here http://confluence.atlassian.com/display/DEV/How+to+write+LDAP+search+filters

            Deleted Account (Inactive) added a comment - I've tried nesting the search but I am guessing this is unsuported, examples out of here http://confluence.atlassian.com/display/DEV/How+to+write+LDAP+search+filters

              rhartono Roy Hartono [Atlassian]
              1d6da744-0255-4c2f-8acc-90e2dac7aab1 Deleted Account (Inactive)
              Affected customers:
              1 This affects my team
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: