In the UI, in http://jenkinshost/configureSecurity/?

When updating security matrix, the previous parameters in LDAP advanced parameters is being reset on apply/save configuration.

You have to recheck that the correct LDAP advanced parameters is set before saving/applying the new security matrix or you can be lock out from Jenkins.

It's a regression i think because on Jenkins 1.514, everything works as expected.