[JIRA] (JENKINS-60728) Two active directory domains and same usernames

[a.e.ukhanov@gmail.com (JIRA)]

Alexander Ukhanov created an issue

Jenkins / JENKINS-60728 Two active directory domains and same usernames Issue Type: Bug Assignee: Félix Belzunce Arcos Components: active-directory-plugin Created: 2020-01-10 10:45 Environment: Jenkins 2.176.4, active-directory-plugin 2.16, two AD domains Priority: Major Reporter: Alexander Ukhanov In two AD-domains configuration (adom.organization.com, ddom.organization.com, binding as different users) when exist same user in both domains with different passwords, logon to Jenkins as user of ddom domain: DDOM\user, ddom\user or us...@ddom.organization.com initiate in log   ... hudson.plugins.active_directory.ActiveDirectoryUnixAuthenticationProvider retrieveUser WARNING: Credential exception trying to authenticate against adom.organization.com domain org.acegisecurity.BadCredentialsException: Either no such user '...' or incorrect password   and after some logons, adom\user account from another domain ADOM being locked due to multiple bad password attempts. I think it happens because authentication go though all list of configured domains(tcpdump show connects to all domains). It is possible to initiate authentification of ddom\user only in home domain ddom.organization.com? Add Comment

This message was sent by Atlassian Jira (v7.13.6#713006-sha1:cc4451f)