Add Users by active directory group

authentication

(Spencer Owen) #1

I am running octopus against a 1 way domain trust as I documented here: Octopus Active Directory domain trusts

I’ve configured octopus to run as a user in Domain ‘A’

.\Octopus.Server.exe configure --activeDirectoryContainer "OU=foobar,DC=example,DC=com"

Users in Domain ‘A’ are able to login to the Octopus server located in Domain ‘B’

According to the documentation you need to prefix the domain in the search.

 "example.com\developers"

When I search for active directory groups to add to a team, octopus finds 0 results.

I know octopus is talking to the Active Directory server because I’m able to find the ‘all’ group, but It can not find any other groups

58

I have another octopus server that does not use a 1 way domain trust and it is able to find the ‘Developers’ Active directory group correctly.

There are no errors in the logs. How do I figure out why octopus can’t find the active directory groups across a domain trust?


(Spencer Owen) #2

I fixed this by changing the scope of the domain to something more generic

Before

.\Octopus.Server.exe service --stop
.\Octopus.Server.exe configure --activeDirectoryContainer "OU=foobar,DC=examlpe,DC=com"
.\Octopus.Server.exe service --start

After

.\Octopus.Server.exe service --stop
.\Octopus.Server.exe configure --activeDirectoryContainer "DC=example,DC=com"
.\Octopus.Server.exe service --start

(Lawrence Wilson) #4

Hi Spencer,
Thanks for getting in touch and letting us know how you fixed this one. Please feel free to reach out if you have any questions regarding this.

Kind regards,
Lawrence.