Directories contain authentication and authorisation information about users, groups and roles. Crowd supports an unlimited number of directories. Administrators can use different directories to create silos of users. For example, you might store your customers in one directory and your employees in another.
Crowd supports the following types of directory:
- Crowd Internal Directory
Internal directories use the Crowd database to store user, group and role information. Internal directories are stored in Crowd's database server. - Delegated Authentication Directory
A Delegated Authentication directory combines the features of an internal Crowd directory with delegated LDAP authentication. This means that you can have your users authenticated via an external LDAP directory while managing the users, groups and roles in Crowd. You can use Crowd's flexible and simple group management when the LDAP groups do not suit your requirements. Alternatively, you can have Crowd import users' group memberships from LDAP each time they authenticate.
For example, you can set up a simple group configuration in Crowd for use with Confluence and other Atlassian products, while authenticating your users against the corporate LDAP directory. You can also avoid the performance issues which might result from downloading large numbers of groups from LDAP.
- LDAP Directory Connector
Crowd provides built-in connectors for the most popular LDAP directory servers, including Microsoft Active Directory, Sun DSEE, OpenLDAP, Apache DS, and others. - Remote Crowd Directory Connector
The page Configuring a Remote Crowd Directory Connector does not exist. - Custom Directory Connector
Custom directory connectors allow developers to connect Crowd to custom user-stores, such as existing databases or legacy systems.
You can add as many directories of each type as you need.
To add a directory,
- Log in to the Crowd Administration Console.
- Click the 'Directories' link in the top navigation bar.
- This will display the Directory Browser. Click the 'Add Directory' link.
- This will display the 'Select Directory Type' screen (see below). Click the button corresponding to the type of directory you want to add:
- 'Internal' — see Configuring an Internal Directory
- 'Delegated Authentication' — see Configuring a Delegated Authentication Directory
- 'Connector' — see Configuring an LDAP Directory Connector (e.g. Microsoft Active Directory)
- 'Remote Crowd' — see Configuring a Remote Crowd Directory
- 'Custom' — see Configuring a Custom Directory Connector
Once a directory has been configured, you will need to specify permissions for its users. You can then map the directory to appropriate applications.
Screenshot: 'Select Directory Type'
Related Topics
- Using the Directory Browser
- Adding a Directory
- Configuring an Internal Directory
- Configuring an LDAP Directory Connector
- Configuring a Remote Crowd Directory
- Configuring a Custom Directory Connector
- Configuring a Delegated Authentication Directory
- Configuring Caching for an LDAP Directory
- Using Naive DN Matching
- Specifying Directory Permissions
- Importing Users and Groups into a Directory
Attachments:





