• Type: Bug
• Resolution: Cannot Reproduce
• Priority: Minor
• Component/s: active-directory-plugin, cli
• Labels:

  None
• Environment:

  Jenkins 2.249.1 (on Windows)
  active-directory 2.17

1. 

   screenshot-1.png

   124 kB

   2020-09-23 05:44

2. 

   screenshot-2.png

   113 kB

   2020-09-23 07:32

[JENKINS-63752] jenkins cli auth doesn't work any longer if AD authentication is activate

Thomas Patzig created issue - 2020-09-23 05:42

Thomas Patzig made changes - 2020-09-23 05:44

Attachment

New: screenshot-1.png [ 52644 ]

Thomas Patzig made changes - 2020-09-23 05:44

Description

Original: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}

New: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail!

Thomas Patzig made changes - 2020-09-23 05:49

Description

Original: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail!

New: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3

Thomas Patzig made changes - 2020-09-23 05:51

Description

Original: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3

New: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass who-am-i Authenticated as: aduser@domain Authorities: ... java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3 {code}

Thomas Patzig made changes - 2020-09-23 06:33

Description

Original: as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass who-am-i Authenticated as: aduser@domain Authorities: ... java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3 {code}

New: ---> still collection information <--- as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass who-am-i Authenticated as: aduser@domain Authorities: ... java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3 {code}

Thomas Patzig made changes - 2020-09-23 06:33

Description

Original: ---> still collection information <--- as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass who-am-i Authenticated as: aduser@domain Authorities: ... java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3 {code}

New: > still collection information < as long as I use "Security Realm" -> "Jenkins own user database CLI works fine: {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth user:pass who-am-i Authenticated as: user Authorities:   authenticated {code}  !screenshot-1.png|thumbnail! ... but if I change to AD ... it has worked fine with jenkins version: 2.235.3 {code:java} java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass who-am-i Authenticated as: aduser@domain Authorities: ... java -jar jenkins-cli.jar -s http://xxx:8081/ -auth aduser@domain:pass version 2.235.3 {code}

Thomas Patzig made changes - 2020-09-23 07:32

Attachment

New: screenshot-2.png [ 52645 ]

Collapse comment: Thomas Patzig added a comment - 2020-09-23 07:34

Thomas Patzig added a comment - 2020-09-23 07:34

found my own mistake and solution

configuration for AD was not completed:
need cache, recursive group queries and remove irrelevant groups

Expand comment: Thomas Patzig added a comment - 2020-09-23 07:34

Thomas Patzig added a comment - 2020-09-23 07:34 found my own mistake and solution configuration for AD was not completed: need cache, recursive group queries and remove irrelevant groups

Thomas Patzig made changes - 2020-09-23 07:34

Resolution		New: Cannot Reproduce [ 5 ]
Status	Original: Open [ 1 ]	New: Closed [ 6 ]