Skip to end of metadata
Go to start of metadata

LDAP integration lets you use user credentials stored in your directory service to log into YouTrack. Please note, that LDAP integration does not download all users from LDAP after setup. A new YouTrack user account is created for a user upon the first login to YouTrack.

Please note, that 'User registration' option in the Administration > Settings should be enabled in order to create new user accounts for LDAP credentials.

This integration feature is bundled in YouTrack and is configured in the Administration area of your installation:

Configuring LDAP Integration

To enable LDAP integration:

  1. In the LDAP Integration tab, click Enable LDAP Integration.
  2. Enter the URL of your LDAP server.
  3. To make sure that the connection with your LDAP server works:
    1. Click Test connection.
    2. In the Test LDAP Login dialog box, enter a pair of user credentials stored in your directory service:
      • domain\username in the Login field.
      • password in the Password field.
    3. Click Test Login.
    4. If an error message if displayed, check your user credentials and/or server URL.
    5. Click Done to close the Test LDAP Login dialog box.
  4. To open Advanced options click an arrow to expand advanced options pane.
  5. If needed specify transformation pattern, which will be applied to a trimmed login name (login name with removed prefix before slash; for example, smith as a trimmed user login name for WORKGROUP/smith full user name) entered by a user. User-entered login name can be referenced as $login$. By default, no transformation is applied. Transformation pattern sample: UID=$login$,DC=example,DC=com.
  6. If needed, specify pattern for search query searching a user by a specific login name. By default, the following pattern is used: (aAMAccountName=$login$).
    Important note
    Please note that parentheses are necessary in Query pattern: enter (uid=$login$) instead of uid=$login$ .
  7. If your LDAP server uses the secure connection and you have SSL key for it, select the key in the drop-down menu below the "Advanced settings" pane. Please note, that the URL to your server should start with 'ldaps://', otherwise the Select SSL Key option will be disabled. For information about uploading and maintaining SSL keys and trusted certificates, please refer to the SSL Key Management page.
  8. To test the connection with LDAP server, click Test connection link. In the appeared Test LDAP login dialog, enter sample credentials and click Test Login button. If the connection is successful, save your LDAP Integration settings; If not, check and correct integration settings.

Sample Configuration

Here is an example of configuration settings for LDAP integration:

In the administration web UI the above configuration looks like this:

Labels:
integration integration Delete
ldap ldap Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.