-
Improvement
-
Resolution: Unresolved
-
Major
-
None
Our LDAP servers are redundant, and they use a DNS round robin technique to provide this redundancy. We have found that when one of the LDAP servers goes down that the LDAP plugin tends to cache the IP address of the LDAP server, and if it had cached the broken server it will always fail authentication.
It is feasible to not cache this IP address as much and perform the DNS lookup of the hostname more often? This would allow Jenkins to eventually get the functioning LDAP server and allow login.
In order to set proper expectation, I have unassigned Kohsuke from this tickets.
Currently there is no Default assignee in the LDAP plugin, any contributions will be appreciated.