Issue with ActiveDirectory automatically filling in bindName

[Taher Furniturewala]

Hi ,

 

We have used  Security Realm -> Active Directory  with just the domain name filled in and no other entries .  

‘Test’ works fine and users are able to use their LDAP credentials to log in .

 

The issue is that when someone who has logged in and visits this ‘Configure Global Security’ page to make some other change ,  their  username is ( silently )  populated in the username field in the Advance option of Active Directory .

This is not noticed as the ‘Advance’ option is not expanded normally .

 

After one saves the change , the username change ( and some weird password ) is saved too after which LDAP login doesn’t work for anyone ( including the person who last made the change )  with the message ‘Invalid login information’ ?

 

The config.xml has that username as <bindName>  and   bindPassword .

 

The only fix known to me so far for this is to manually remove these entries from config.xml  and force restart Jenkins  L .

 

Does anyone know why this happens and how to prevent it ?

 

Our setup is :

 

JENKINS  = LTS  1.580.1

HOST OS  = CentOs

Active directory plugin = 1.39

LDAP plugin = 1.6 .

 

Thanks in advance

Taher .

 

 

 

 

---

This email and any attachments may contain confidential and privileged material for the sole use of the intended recipient. Any review, copying, or distribution of this email (or any attachments) by others is prohibited. If you are not the intended recipient, please contact the sender immediately and permanently delete this email and any attachments. No employee or agent of TiVo Inc. is authorized to conclude any binding agreement on behalf of TiVo Inc. by email. Binding agreements with TiVo Inc. may only be made by a signed written agreement.