While you should already know the user DN you are using for your LDAP connection, it can be helpful to review the users and groups in Apache Directory Studio to determine the best scope for your Crowd LDAP directory configuration.
Crowd comes with default configurations that will work for most customers. In the examples below, we illustrate some common options for changing your user and group configurations.
There are a number of other attributes, not shown here, that can also be used to narrow the scope of users and groups.
![]() | Important Search Filter Notes
|
On this page:
Example 1. Using a User's DN for Crowd Configuration
- Find a user in the scope you wish to use for Crowd. Highlight that user in Apache Directory Studio.
Screenshot: User information in Apache Directory Studio
- Using the information about the user dmcgahan, you can narrow down the users returned in the Crowd directory to those in cn=Users who are members of either the confluence-users or the confluence-administrators group.
User DN:
cn=Users
User Object Filter:
(&(objectCategory=Person)(sAMAccountName=*) (|(memberOf=cn=confluence-users,ou=Groups,dc=sydney,dc=atlassian,dc=com) (memberOf=cn=confluence-administrators,ou=Groups,dc=sydney,dc=atlassian,dc=com)))
Screenshot: The resulting user configuration in Crowd
Example 2: Using a Group's DN for Crowd Configuration
- Find a group in the scope you wish to use for Crowd. Highlight that group in Apache Directory Studio.
Screenshot: Group information in Apache Directory Studio
- Using the information about the group confluence-users, you can narrow down the groups returned in the Crowd directory to those in ou=Groups and return only the confluence-users or the confluence-administrators group. Under most circumstances, it is best to apply any changes to both group and role configuration for consistency.
Group DN:
ou=Groups
Group Object Filter:
(&(objectCategory=Group)(|(cn=confluence-users)(cn=confluence-administrators)))
Screenshot: The resulting group/role configuration in Crowd
RELATED TOPICS
Attachments:





