Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

What are the risks associated with migrating from an internal directory to active directory?

Laurel Moczydlowski
Laurel Moczydlowski April 25, 2018

My company is planning to implement SSO for Jira, however we've found during testing, that because the Internal Directory is not linked to AD, the user info never updates in Jira.  

That being said we need to switch to user directory linked to AD for thousands of users, what is the overall risk associated with this, and how difficult is it?

Answer
Watch
Like Be the first to like this
466 views

1 answer

1 accepted

0 votes
Answer accepted
Arthur Gonçalves
Arthur Gonçalves
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
April 30, 2018

Hi Laurel,

This shouldn't be a pretty hard migration, as you can simply need to follow our
Migrating Users between directories guide to accomplish this.

Note that group memberships will not be preserved, so it is necessary to update group memberships manually in the new directory in which users reside. If you have more than a few dozen users to migrate, there are some scripts and tools that might help make the transition smoother. See this page for some details about that.

Regards,

Arthur Gonçalves

View More Comments
Laurel Moczydlowski
Laurel Moczydlowski May 1, 2018

Thanks Arthur, we have over 2000 users so the scripts will be very helpful.

 

Just a quick question about the AD link overall, we are attempting to setup SSO and plan on using AD to manage the groups that users belong to.So we would have multiple groups in AD that would dictate the groups that specific employees belong to, because not all employees belong to every project, or have different roles in each project.  

Is this a possibility? or would we require different directories to manage this? 

 

Thanks so much for your help!

Like
Arthur Gonçalves
Arthur Gonçalves
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 1, 2018

Hi Laurel,

 

Yes, this is perfectly possible to accomplish. Basically, within your AD you will define each user's group memberships and within Jira you can restrict those at project level, meaning that users will have access only to the projects that they are expected to, based on the permission scheme used on each project.

Like
Laurel Moczydlowski
Laurel Moczydlowski May 1, 2018

Thanks Arthur! Is there any documentation for this?

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events