How to Remove LDAP Groups from JIRA

Still need help?

The Atlassian Community is here for you.

Ask the community

Overview

When JIRA is set up to synchronise directly from a LDAP server such as Active Directory (as in Connecting to an LDAP Directory), if a group is no longer required from Active Directory it cannot be deleted within JIRA, as in the screenshot below.

In this example, using  Active Directory with the Read Only, with local groups permission setting, this is caused by JIRA marking that group as belonging to the LDAP server and group membership, including deleting the group cannot be modified within JIRA.

Steps

Either of the following:

  1. Delete the groups from the LDAP server (e.g.: Active Directory).
  2. Modify the Group Object Filter, as in the Group Schema Settings to exclude them from synchronisation and then resynchronise the User Directory. The example below will no longer synchronise the ad2003-test-group from Active Directory and all groups and group membership will be removed from JIRA.

     (&(objectCategory=Group)(!(cn=ad2003-test-group)))

    (info) Please see our How to write LDAP search filters for further information on writing the filter.

Last modified on Jun 15, 2022

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.