Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-73882

After Upgrade AD Groups not recognized for auto login

      We upgraded our Jenkins environment to the latest version 2.462.3and now users are unable to login. We have tried removing and adding AD group but some get in and some still unable to get in.

          [JENKINS-73882] After Upgrade AD Groups not recognized for auto login

          Daniel Beck added a comment -

          This is an issue tracker, not a support site.

          For a bug report, there's too much information missing.

          What version of Jenkins were you using before? Did you update any plugins? What is the current version of those plugins, what is the previous version of those plugins? Are the groups listed in /whoAmI? Are the groups validated in the matrix auth permissions table? Can these users log in if you assign permissions directly rather than via groups? Etc.

          Per your email address, you're IT support. Try writing issue reports of the kind you'd want to receive yourself.

          Daniel Beck added a comment - This is an issue tracker, not a support site. For a bug report, there's too much information missing. What version of Jenkins were you using before? Did you update any plugins? What is the current version of those plugins, what is the previous version of those plugins? Are the groups listed in /whoAmI? Are the groups validated in the matrix auth permissions table? Can these users log in if you assign permissions directly rather than via groups? Etc. Per your email address, you're IT support. Try writing issue reports of the kind you'd want to receive yourself.

          Jeremiah added a comment -

          So a simple request for more information would have sufficed here. Instead of being the typical IT Support person that most user insist on hating. You know the type that doesn't really want to do his/her job and avoid getting to the meat and potato's of the request being submitted.

          You may be having a bad day but don't ever treat a reporter like this again as it is not becoming of any person that supports a product. You should not be responding to anyone like this as you represent the application.

           

          Now with that said here are your answers:

          What version of Jenkins were you using before? 2.401.1 to 2.62.3

          Did you update any plugins? Yes

          What is the current version of those plugins, what is the previous version of those plugins? 3.1.8 upgrade to 3.2.2

          Are the groups listed in /whoAmI? we are also using the Active directory plugin to support the connection to Active Directory v2.30 upgrade to 2.37

          Are the groups validated in the matrix auth permissions table? yes

          Can these users log in if you assign permissions directly rather than via groups? yes if we chose to do so but not how we are doing it.

          Jeremiah added a comment - So a simple request for more information would have sufficed here. Instead of being the typical IT Support person that most user insist on hating. You know the type that doesn't really want to do his/her job and avoid getting to the meat and potato's of the request being submitted. You may be having a bad day but don't ever treat a reporter like this again as it is not becoming of any person that supports a product. You should not be responding to anyone like this as you represent the application.   Now with that said here are your answers: What version of Jenkins were you using before? 2.401.1 to 2.62.3 Did you update any plugins? Yes What is the current version of those plugins, what is the previous version of those plugins? 3.1.8 upgrade to 3.2.2 Are the groups listed in /whoAmI? we are also using the Active directory plugin to support the connection to Active Directory v2.30 upgrade to 2.37 Are the groups validated in the matrix auth permissions table? yes Can these users log in if you assign permissions directly rather than via groups? yes if we chose to do so but not how we are doing it.

          Daniel Beck added a comment -

          I am not interested in investigating this issue, but would be happy to accept a PR with appropriate test coverage, if the problem ends up (unexpectedly IMO) caused by matrix-auth.

          Daniel Beck added a comment - I am not interested in investigating this issue, but would be happy to accept a PR with appropriate test coverage, if the problem ends up (unexpectedly IMO) caused by matrix-auth .

            Unassigned Unassigned
            jseward Jeremiah
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: