Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-23753

Always perform LDAP server DNS lookup right before attempting to establish connection

    • Icon: Improvement Improvement
    • Resolution: Unresolved
    • Icon: Major Major
    • ldap-plugin
    • None

      Our LDAP servers are redundant, and they use a DNS round robin technique to provide this redundancy. We have found that when one of the LDAP servers goes down that the LDAP plugin tends to cache the IP address of the LDAP server, and if it had cached the broken server it will always fail authentication.

      It is feasible to not cache this IP address as much and perform the DNS lookup of the hostname more often? This would allow Jenkins to eventually get the functioning LDAP server and allow login.

          [JENKINS-23753] Always perform LDAP server DNS lookup right before attempting to establish connection

          Oleg Nenashev added a comment -

          In order to set proper expectation, I have unassigned Kohsuke from this tickets.
          Currently there is no Default assignee in the LDAP plugin, any contributions will be appreciated.

          Oleg Nenashev added a comment - In order to set proper expectation, I have unassigned Kohsuke from this tickets. Currently there is no Default assignee in the LDAP plugin, any contributions will be appreciated.

            Unassigned Unassigned
            jwagner Justin Wagner
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: