Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-22518

Allow migration to the Delegated LDAP directory during upgrade

    XMLWordPrintable

Details

    • We collect Confluence feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Customers with large LDAP directory will hit into sync issue in Confluence 3.5.x.

      The current recommendation is to create a more specific LDAP search filter, failing that we recommend using Delegated LDAP directory.

      It is unfortunately not easy for these customers to just use Delegated LDAP, primarily because their LDAP users will lose their original group membership (eg. LDAP groups and other local groups). These need to be created manually by the admin.

      We should create an option to allow these customers to move their user management to Delegated LDAP after upgrade.

      Kind of a combination of CONF-22090 and CONF-22295. And perhaps make the jsp smarter so it can automatically create LDAP groups in the delegated directory (by scouring the spacepermissions table)?

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-22463 Support migration of pre-3.5 groups and memberships of external users to 3.5+ "Internal with LDAP authentication" directory

          • Highest - Our top priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              rhartono Roy Hartono [Atlassian]
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: