Is it possible to control access by LDAP?

jserrahima · February 3, 2021, 4:55pm

Hello,

I’m wondering if i can discriminate users based on their LDAP group membership. I realice that everyone who has a valid user can access to SonarQube instance but i would like to allow the entrance only for determinate groups.

Is it possible?

Thanks.

OlivierK · February 4, 2021, 9:38am

Hello @jserrahima,

Yes this is possible.
You would have to:

Configure LDAP group synchronization (so that when user authenticates, its group memberships are also fetch from the LDAP). See Group mapping section on the page below
Create on SonarQube groups with the same names as the LDAP groups you want to sync
Assign permissions based on these groups

See Delegating Authentication | SonarQube Docs

Olivier

jserrahima · February 16, 2021, 7:50am

Hi @OlivierK,

Thanks for the reply. I was finally able to filter by group membership like this:

ldap.user.request=(&(objectClass=user)(sAMAccountName={login})(memberOf=CN=name_of_group_you_are_looking_for,CN=Users,DC=organization,DC=com))

system · February 23, 2021, 7:50am

This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Restrict access to Sonarqube based on LDAP Group Membership? SonarQube Server / Community Build ldap	2	1031	January 20, 2021
Every LDAP user is able to access the SonarQube SonarQube Server / Community Build authentication	2	793	January 20, 2021
Active Directory User and Group Access through LDAP SonarQube Server / Community Build sonarqube	4	1023	August 3, 2022
Restricting login to users from a specific LDAP/AD group SonarQube Server / Community Build ldap , active_directory	2	4177	January 20, 2021
Restrict login access to Sonarqube based on LDAP Group SonarQube Server / Community Build sonarqube	1	318	October 23, 2023

Is it possible to control access by LDAP?

Related topics