Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-46884

ActiveDirectory plugin advanced configuration not available without specifying custom domain name

XMLWordPrintable

      In "Configure Global Security" it is not possible in the UI to configure advanced active directory options without selecting the "Specify custom Active directory domain name" check box. This prevents users from modifying custom advanced settings (such as caching) without configuring AD manually.

      After investigation I have found that using a custom active directory domain results in random socket closed failures. If I use the default AD config (which appears to use COM objects in code) it works without any issues. However, the default AD config does not provide the ability to configure caching in the UI.

      Users should be able to specify advanced settings for the default AD config option. The "Advanced" button should be moved in the UI so that it does not depend on showing/hiding the "Specify custom Active directory domain name" content. Only options that are used by the default Windows COM mode should be shown independent of the button. If some are not applicable then they should be separated so that there are two sections - generic advanced and unix/custom advanced.

      Workaround
      Settings can be modified manually in config.xml. Here is an example:

        <securityRealm class="hudson.plugins.active_directory.ActiveDirectorySecurityRealm" plugin="active-directory@2.6">
      
          ...
      
          <cache>
            <size>500</size>
            <ttl>1800</ttl>
          </cache>
        </securityRealm>
      

        1. adconfig1.PNG
          29 kB
          Mark R
        2. adconfig2.PNG
          11 kB
          Mark R

            fbelzunc FĂ©lix Belzunce Arcos
            mrichar2 Mark R
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: