We recently updated the active directory plugin from version 2.0 to 2.4 and we started having problems not being able to login.  We discovered that if you clear your browser cookies, you can then login just fine.  Our workaround was to revert back to version 2.0.

          [JENKINS-43237] Can't login without clearing cookies

          This is very strange...

          In order to replicate this, I will need that you create a logger for hudson.plugins.active_directory = ALL and then you reproduce the issue again. Then , you will need to generate a support bundle (with the support-core plugin) before reverting the instance to 2.0. I know there are already a lot of companies on 2.4 without any issue and since you don't provide exactly steps to reproduce, neither any diagnostic information, I am lowering the priority to low for the moment

          Félix Belzunce Arcos added a comment - This is very strange... In order to replicate this, I will need that you create a logger for hudson.plugins.active_directory = ALL and then you reproduce the issue again. Then , you will need to generate a support bundle (with the support-core plugin) before reverting the instance to 2.0. I know there are already a lot of companies on 2.4 without any issue and since you don't provide exactly steps to reproduce, neither any diagnostic information, I am lowering the priority to low for the moment https://support.cloudbees.com/hc/en-us/articles/204880580-How-do-I-create-a-logger-in-Jenkins-for-troubleshooting-and-diagnostic-information https://support.cloudbees.com/hc/en-us/articles/218625237-How-to-diagnose-AD-integration-problems

          Bryan Hunt added a comment -

          I'm now running the official Jenkins 2.46.2 Docker image on a test system.  I was able to reproduce the failed login with AD and I have attached a support bundle.

          Bryan Hunt added a comment - I'm now running the official Jenkins 2.46.2 Docker image on a test system.  I was able to reproduce the failed login with AD and I have attached a support bundle.

          Bryan Hunt added a comment -

          Ping

          Bryan Hunt added a comment - Ping

          This issue is very strange... There is a `javax.naming.CommunicationException` on the bind process. I would suggest that you explicitly set-up a Domain Controller on your AD configuration at Jenkins level.

          I don't recall to have done anything related to this issue between 2.0 to 2.4 - so it seems something strange at infra level. I would also use ldapsearch to double check that the connectivity should work.

          Félix Belzunce Arcos added a comment - This issue is very strange... There is a `javax.naming.CommunicationException` on the bind process. I would suggest that you explicitly set-up a Domain Controller on your AD configuration at Jenkins level. I don't recall to have done anything related to this issue between 2.0 to 2.4 - so it seems something strange at infra level. I would also use ldapsearch to double check that the connectivity should work.

            fbelzunc Félix Belzunce Arcos
            bhunt Bryan Hunt
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: