Is it possible to use multiple authorization strategies in Jenkins?

[vicki...@yahoo.com]

Hello,

we are using LDAP and role-based authentication for Jenkins. Sometimes we are experiencing LDAP connectivity problems that renders  jenkins CI non-operational. We would like to be able to have a non LDAP authenticated admin user that can login at any time even when LDAP connectivity is down. Is it possible to combine authentication strategies?

Thank you!

Vicki

[Coinbase Support]

__________________________________

Type your response ABOVE THIS LINE to reply Re: Is it possible to use multiple authorization strategies in Jenkins? Coinbase  |  Aug 19, 2014 11:34AM PDT Thank you for submitting your request. We have received your request and are working on responding to you as soon as possible. If you have any additional information to add to this case, please reply to this email. Thanks in advance for your patience and support. This message was sent to jenkins...@googlegroups.com in reference to Case #408116.

[[d4535ce1b187a234fe7f4b51952cbc1f35c59eed-280066816]]

[Raju t]

Hi Vicki, Wondering if you get any answer for your question or you found the solution? I am also facing something similar kind of problem where i need functionality of more than one authorization strategy. So thought of checking with you on what solution you got. Thanks. 

[Jacob Weber]

Funny, I just came here to ask the same question.

I know one approach is to configure Jenkins to use the Unix user/group database for authentication, and then configure your system to use LDAP to authenticate. For example, you can use sssd if you're running CentOS/RHEL.

However, I'd prefer not to allow everyone to log into my Jenkins box. Wondering if there's another solution.

[Jacob Weber]

To clarify -- you would use multiple strategies to authenticate users on your system. sssd can do this in conjunction with its PAM module -- you can use LDAP as well as local users.