Use of LDAP plug in and issues with AD groups

[Keith Marchen]

Hi,

 

We sure could use some assistance.. 

 

We are on Jenkins 1.583 and using LDAP plugin (1.11). We can add individual users/permissions which works fine. But we are having issues when adding AD groups.  The group is ‘found’ and added to Jenkins. But when someone in the group tries to log on, he name appears in the upper right hand corner but doesn’t have access to Jenkins. It appears the permissions given to the group is not working properly. 

 

Any ideas why permissions on groups via the LDAP plugin doesn’t work? We are just about ready to roll out Jenkins to a larger group of users and it would be very time consuming to add each individual user as we have implemented Project Based Matrix Authorization.          

[Daniel Beck]

Have them go to the URL /whoAmI (uppercase i). Compare the group memberships shown there to what you expect.

Possible issues I can think of:
- No recursion. You're not considered a member of group X if you're just a member of group Y, and only that is a member of group X.
- Mind upper/lower case.

> --
> You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-use...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/945c1213-425e-4ea1-818c-7bff842082cd%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.