[JIRA] [active-directory-plugin] (JENKINS-33550) Active Directory Plugin adding user name as Bind DN

1 view
Skip to first unread message

milawd@gmail.com (JIRA)

unread,
Mar 15, 2016, 10:46:01 AM3/15/16
to jenkinsc...@googlegroups.com
Michael Miller created an issue
 
Jenkins / Bug JENKINS-33550
Active Directory Plugin adding user name as Bind DN
Issue Type: Bug Bug
Assignee: Félix Belzunce Arcos
Attachments: jenkins.gif
Components: active-directory-plugin
Created: 15/Mar/16 2:45 PM
Environment: Jenkins on Windows
Labels: user-experience plugins
Priority: Minor Minor
Reporter: Michael Miller

The Active Directory plugin is adding a admin username as the Bind DN when the user add a new user in Global Security. The following tag gets added to the config file:

<bindName> [USER_NT_USERName] </bindName>

This prevents anyone from logging into Jenkins. By removing that entry from the config, users are able to log into Jenkins
Add Comment Add Comment
 
This message was sent by Atlassian JIRA (v6.4.2#64017-sha1:e244265)
Atlassian logo

milawd@gmail.com (JIRA)

unread,
Mar 15, 2016, 10:51:06 AM3/15/16
to jenkinsc...@googlegroups.com
Michael Miller updated an issue
Change By: Michael Miller
Priority: Minor Major

fbelzunc@gmail.com (JIRA)

unread,
Mar 15, 2016, 10:59:02 AM3/15/16
to jenkinsc...@googlegroups.com
Félix Belzunce Arcos commented on Bug JENKINS-33550
 
Re: Active Directory Plugin adding user name as Bind DN

I don't understand this issue. Can you explain what needs to be done to re-produce it, please?

milawd@gmail.com (JIRA)

unread,
Mar 15, 2016, 11:55:01 AM3/15/16
to jenkinsc...@googlegroups.com

In our environment, we can reproduce the issue by having the Admin user log into Jenkins, then add a user in Global Security. By doing that, the config gets updated with: <bindName> [USER_NT_USERName] </bindName> where [USER_NT_USERName] is the NT login name of the Admin. Immediately, no one can log into Jenkins and we receive the error message in the attached image. By removing the entry, <bindName> [USER_NT_USERName] </bindName>, users are able to log into Jenkins

milawd@gmail.com (JIRA)

unread,
Mar 15, 2016, 11:56:01 AM3/15/16
to jenkinsc...@googlegroups.com

FYI, we are using Project-based Matrix Authorization Strategy

johnny.horvi@gmail.com (JIRA)

unread,
Jun 20, 2016, 8:45:01 AM6/20/16
to jenkinsc...@googlegroups.com

I experienced the same behaviour, and found that the problem was that Chrome was auto-filling the username and password fields hidden in the advanced section.
This message was sent by Atlassian JIRA (v7.1.7#71011-sha1:2526d7c)
Atlassian logo

yeremyturcios@gmail.com (JIRA)

unread,
May 15, 2019, 5:49:01 PM5/15/19
to jenkinsc...@googlegroups.com

In my experience, my password manager, Bitwarden, was auto-filling the Bind DN field, thus, when I hit save, it would save that without me knowing it.
This message was sent by Atlassian Jira (v7.11.2#711002-sha1:fdc329d)
Reply all
Reply to author
Forward
0 new messages