This page describes the function of each of the tags in an atlassian-user.xml file.

Child tags of the <ldap> tag:

ホスト

The host name of the machine running the LDAP server. This must resolve from the machine running Confluence.

port

The port number that the LDAP server is running on. This should usually be 389.

securityPrincipal

The distinguished name of a user who is allowed to browse the entire LDAP repository. This is omitted if the repository has anonymous access enabled.

securityCredential

That user's password. This is omitted if the repository has anonymous access enabled.

securityProtocol

Must be 'plain'. This is omitted if the repository has anonymous access enabled.

securityAuthentication

Must be 'simple', or 'none' if the repository has anonymous access enabled.

baseContext

This should be set to a context at the 'top' of your LDAP tree.

baseUserNamespace

This should be set to a context which contains all your user entities.

userSearchFilter

A filter which matches only user entities.

baseGroupNamespace

This should be set to a context which contains all your group entities

groupSearchFilter

A filter which matches only group entities

usernameAttribute

The name of the attribute on a user entity which contains the Confluence user name of the user.

firstnameAttribute

The name of the attribute on a user entity which contains the first name of the user.

surnameAttribute

The name of the attribute on a user entity which contains the surname of the user.

emailAttribute

The name of the attribute on a user entity which contains the email address of the user.

groupnameAttribute

The name of the attribute on a group entity which contains the Confluence group name of the group.

membershipAttribute

The name of an attribute on a group entity which contains the distinguished name of a member of a group. This should occur multiple times on a group to indicate multiple members of the group.

userSearchAllDepths

Set to 'true' to search the baseUserNamespace level and all nodes underneath for users. Defaults to 'false'.

groupSearchAllDepths

Set to 'true' to search the baseGroupNamespace level and all nodes underneath for groups. Defaults to 'false'.

useUnqualifiedUsernameForMembershipComparison

Set to 'true' to use the value of the usernameAttribute for membership comparisons instead of the distinguished name. Defaults to 'false'.

Except where otherwise noted, content in this space is licensed under a Creative Commons Attribution 2.5 Australia License.