Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-65011

LDAP groups not found without Manager DN

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Critical Critical
    • ldap-plugin
    • None
    • Jenkins 2.282, LDAP 2.x

      Hello, the LDAP plugin is not working for us anymore since version 2.x. We have to stick with 1.26 which is the last working one.

      I have found the reason is that in the new version, the authentication process is different.

       

      In the old version, the user credentials are used to check if authentication works AND, following that, to retrieve the user's groups. Then the user is logged out again.

      In the new version, the user credentials are used to check only if authentication works and then the user is logged out. Only after that another anonymous ldap query is made to retrieve the user's groups.

       

      On our server, that group query fails for anonymous users but works for authenticated users. This is why the LDAP v2.x fails to discover the user's groups. In our matrix based permission system users without LDAP group cannot view anything so they're out.

       

            olamy Olivier Lamy
            kugel Thomas M
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated: