"Unexpected DN in group" on synchronizing with MS Active Directory

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

プラットフォームについて: Server および Data Center のみ。この記事は、Server および Data Center プラットフォームのアトラシアン製品にのみ適用されます。

Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Fisheye および Crucible は除く





問題

When synchronising Confluence directory to LDAP you might encounter an error like this:


2020-11-19 12:12:16,852 DEBUG \[Caesium-1-2] \[atlassian.crowd.directory.RFC4519DirectoryMembershipsIterable] apply Unexpected DN in group 'confluence-users': cn=user1,ou=my-ou,dc=domain,dc=local

The error above is shown for groups that were already synced into Confluence before. 

診断

環境

  • Confluence Server/Data Center

  • MS Active Directory user directory.

Diagnostic Steps

  • Verify if the OU name has changed before the latest synchronization.

原因

Whenever Confluence is comparing the users it already has synchronized against the set of users it just got from the AD after syncing the directory, it'll log that Unexpected DN in group when it doesn't find the user in the group it was originally a member of, in the output from the LDAP anymore.

Because of that whenever an OU name is changed it might throw the error above.

回避策

Changing the OU name back to the original name can solve this in some instances.


説明 Ldap synchronization issue.
製品Confluence Server/Data Center



最終更新日: 2021 年 10 月 12 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.