Jira and Active Directory Usernames

Stuart Gill October 7, 2013

I've set up a new Jira instance and connected to our Activie directory but I'm running into 2 problems.

1) regardless of the configurations I've tried I can only get it to see the Users OU. If I change the OU details under base DN it will give an error except with cn=users. I want to store my accounts in an alternate OU

2) when sucessfully authenticating with an account that is in the users OU for some reason it will only allow me to log in using the users full name instead of the actual username.

Any help would be greatly appreciated.

1 answer

1 accepted

0 votes
Answer accepted
Jeremy Largman
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 7, 2013

1) regardless of the configurations I've tried I can only get it to see the Users OU. If I change the OU details under base DN it will give an error except with cn=users. I want to store my accounts in an alternate OU

Active Directory is a little tricky. You'll have to get the entire qualified name of the alternate OU that you want. Our documentation has this tip:

  • For Microsoft Active Directory, specify the base DN in the following format: dc=domain1,dc=local. You will need to replace thedomain1 and local for your specific configuration. Microsoft Server provides a tool called ldp.exe which is useful for finding out and configuring the the LDAP structure of your server.

Hopefully that's helpful? I actually like Apache Directory Studio better than AD's built-in browser. I can tell you it does work, you've just got to get the right configuration. If you're still stuck, open up a support ticket and we'll take you through it.

2) when sucessfully authenticating with an account that is in the users OU for some reason it will only allow me to log in using the users full name instead of the actual username.

So that one's the 'User Name Attribute' under User Schema Settings. Try switching it to sAMAccountName if you have cn, or vice versa. Again, use either ldp.exe or Apache Directory Studio to browse the user and find that specific attribute.

Suggest an answer

Log in or Sign up to answer