Support multiple AD/LDAP domains
Currently Mattermost supports AD/LDAP integration to a single AD/LDAP domain. The proposal is for the integration to support multiple AD/LDAP domains.
We have an open ticket for it in our backlog, and this feature proposal is to gauge how popular this feature would be among our user base.
https://mattermost.atlassian.net/browse/MM-5751
Note that you can currently configure Mattermost deployments with multiple AD/LDAP domains using a forest structure: https://docs.mattermost.com/deployment/sso-ldap.html#configure-ad-ldap-deployments-with-multiple-domains
Adminmattermost.org
(Moderator, Mattermost)
shared this idea
-
Geoffray
commented
Internal discussion to switch from Mattermost to another solution, we are already working with it since 2 years for the headquarter but not possible to extend it to the trusted domains of our branches.
-
Anonymous
commented
I came here to propose this exact feature. Thank you for linking to the "forest structure" docs.
Currently, single sign-on is the only paid feature my end-users would greatly benefit from. However, my team is not able to build using SSO because we support two sister organizations that use separate ADFS servers. This feature would almost definitely lead us to build using MM Enterprise.
-
Nathaniel Miller
commented
This would be huge benefit to my organization. We have to maintain a certain level of administrative responsibility separation between different systems, so our AD and LDAP domains are completely separate. Tools where we can use multiple AD/LDAP sources offer us a lot of flexibility. For Mattermost, we have to limit it's use to only the user that fall into a specific LDAP, currently.
-
Garrett Earle
commented
This is a wonderful idea. We have LDAP to our Linux LDAP, but ideally we would map to both Linux and AD and allow all of our employees access to the same Mattermost instance.