LDAP group authentication with jenkins

[dhanushka ranasinghe]

Hi...guys

i have a LDAP server and its has a group called .

cn=internal ou=group,dc=example,dc=com

Users of this group are--

uid=user1,ou=staff,dc=example,dc=com
uid=user2,ou=staff,dc=example,dc=com

i need to only authenticate the users under cn=internal .... group

is it possible to achive that in jenkins ?

Simple LDAP authentication from rootDN works fine ..., is it possible to limit authentication for "cn=internal ou=group,dc=example,dc=com" LDAP group

This is my configuration thay i tried for LDAP group autentication

server: ldap.example.com:389

rootdn:dc=ldap,dc=example,dc=com

user search filter : mail={0}

Group search base : ou=group,dc=example,dc=com

manager DN : cn=admin,dc=ldap,dc=example,dc=com

manager Password: abc

LDAP search for the cn=internal group as follows ,

dn: cn=internal,ou=group,dc=example,dc=com
objectClass: groupOfNames
objectClass: top
cn: internal
member: uid=user1,ou=user,dc=example,dc=com
member: uid=user1,ou=user,dc=example,dc=com

[K96]

Hi,

I'm not familiar with LDAP, but I suppose it isn't easy to authenticate users with their LDAP groups.

Instead, you can use 'authorization'.

Try the followings for example:

• enable 'matrix-based security'
  
• add your LDAP account(cn) with the administrator role
• add LDAP group accounts(cn) with other roles as you need
  
• delete all roles from the anonymous user
  
• save config, and confirm that user/group icons are shown

We are using the above LDAP setting together with Role Strategy Plugin.

Regards,

Tksh