Jenkins Integration with LDAP -- Issue

classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|

Jenkins Integration with LDAP -- Issue

gaurav gundal

Hi Everyone,


I am trying to configure Jenkins with the  ldap,but I am getting error as mentioned below . Please let me know if you know about below error


 

Ldap Integration with the Jenkins

 

Below are the Jenkins Setup details

Jenkins Version - Jenkins ver. 2.204.1

Jenkins Ldap plugin – 1.21

 

LdapSearch from the Jenkins Master

ldapsearch -x -h xxx -p 389 -D "CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com"  -b  "OU= aa,DC= qq,DC=pp,DC=com" "(sAMAccountName=xxxxxx)"

Result stripped out -- Succesful

Search: 2

Result: 0 Success

# numResponses: 2

# numEntries: 1

 

 

So I configured the Ldap through Jenkins UI

With below details

Test 1 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

Error :

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 2 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

 

Error:

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 3

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

               Group membership : Parser user attribute for list of LDAP groups

 

Error: Same error

 


--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/d9d4dfa4-29a4-4bdd-8517-1f4905618533%40googlegroups.com.
Reply | Threaded
Open this post in threaded view
|

Re: Jenkins Integration with LDAP -- Issue

Alex-6
Maybe you have too many users in LDAP? Can you narrow down the search and see if you have the same issue?


On Monday, 20 January 2020 22:29:34 UTC, gaurav gundal wrote:

Hi Everyone,


I am trying to configure Jenkins with the  ldap,but I am getting error as mentioned below . Please let me know if you know about below error


 

Ldap Integration with the Jenkins

 

Below are the Jenkins Setup details

Jenkins Version - <a href="https://jenkins.io/" target="_blank" rel="nofollow" onmousedown="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ&#39;;return true;" onclick="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ&#39;;return true;">Jenkins ver. 2.204.1

Jenkins Ldap plugin – 1.21

 

LdapSearch from the Jenkins Master

ldapsearch -x -h xxx -p 389 -D "CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com"  -b  "OU= aa,DC= qq,DC=pp,DC=com" "(sAMAccountName=xxxxxx)"

Result stripped out -- Succesful

Search: 2

Result: 0 Success

# numResponses: 2

# numEntries: 1

 

 

So I configured the Ldap through Jenkins UI

With below details

Test 1 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

Error :

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 2 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

 

Error:

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 3

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

               Group membership : Parser user attribute for list of LDAP groups

 

Error: Same error

 


--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/bf1388db-2eb4-4bf8-bcb0-68ecf9e3c233%40googlegroups.com.
Reply | Threaded
Open this post in threaded view
|

Re: Jenkins Integration with LDAP -- Issue

Niranjan Rao
I'm also facing the exact same problem. We don't have that many users, less than 100. Just posted another question to the list.

My story is authentication works fine when Jenkins starts and after sometime no one can login. Only solution is to restart tomcat.

Regards,

Niranjan
On 1/21/20 12:52 AM, Alex wrote:
Maybe you have too many users in LDAP? Can you narrow down the search and see if you have the same issue?


On Monday, 20 January 2020 22:29:34 UTC, gaurav gundal wrote:

Hi Everyone,


I am trying to configure Jenkins with the  ldap,but I am getting error as mentioned below . Please let me know if you know about below error


 

Ldap Integration with the Jenkins

 

Below are the Jenkins Setup details

Jenkins Version - <a href="https://jenkins.io/" target="_blank" rel="nofollow" onmousedown="this.href='https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ';return true;" onclick="this.href='https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ';return true;" moz-do-not-send="true">Jenkins ver. 2.204.1

Jenkins Ldap plugin – 1.21

 

LdapSearch from the Jenkins Master

ldapsearch -x -h xxx -p 389 -D "CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com"  -b  "OU= aa,DC= qq,DC=pp,DC=com" "(sAMAccountName=xxxxxx)"

Result stripped out -- Succesful

Search: 2

Result: 0 Success

# numResponses: 2

# numEntries: 1

 

 

So I configured the Ldap through Jenkins UI

With below details

Test 1 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

Error :

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 2 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

 

Error:

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 3

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

               Group membership : Parser user attribute for list of LDAP groups

 

Error: Same error

 


--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/bf1388db-2eb4-4bf8-bcb0-68ecf9e3c233%40googlegroups.com.


--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/cd27007e-7f7b-ea8c-0398-7c209a6be20c%40gmail.com.
Reply | Threaded
Open this post in threaded view
|

Re: Jenkins Integration with LDAP -- Issue

Shaun Megaw
In reply to this post by gaurav gundal
I had the same issue. what fixed it for me was filling in the "User search filter" field

I added (&(objectCategory=person)(sAMAccountName={0}))



On Tuesday, January 21, 2020 at 12:29:34 AM UTC+2, gaurav gundal wrote:

Hi Everyone,


I am trying to configure Jenkins with the  ldap,but I am getting error as mentioned below . Please let me know if you know about below error


 

Ldap Integration with the Jenkins

 

Below are the Jenkins Setup details

Jenkins Version - <a href="https://jenkins.io/" target="_blank" rel="nofollow" onmousedown="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ&#39;;return true;" onclick="this.href=&#39;https://www.google.com/url?q\x3dhttps%3A%2F%2Fjenkins.io%2F\x26sa\x3dD\x26sntz\x3d1\x26usg\x3dAFQjCNHQL0iKEef1Q74B69v551M2WfqXIQ&#39;;return true;">Jenkins ver. 2.204.1

Jenkins Ldap plugin – 1.21

 

LdapSearch from the Jenkins Master

ldapsearch -x -h xxx -p 389 -D "CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com"  -b  "OU= aa,DC= qq,DC=pp,DC=com" "(sAMAccountName=xxxxxx)"

Result stripped out -- Succesful

Search: 2

Result: 0 Success

# numResponses: 2

# numEntries: 1

 

 

So I configured the Ldap through Jenkins UI

With below details

Test 1 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

Error :

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 2 :

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

 

Error:

LdapCallback;LDAP response read timed out, timeout used:60000ms.; nested exception is javax.naming.NamingException: LDAP response read timed out, timeout used:60000ms.; remaining name

User lookup: failed for user "xx"

 

Test 3

Server : xxx:389

rootDn: DC= qq,DC=pp,DC=com

ManagerDn: CN=xx,OU=bb,OU=aa,DC=qq,DC=pp,DC=com

Manager Password : xxxxx

                Environment Properties: com.sun.jndi.ldap.connect.pool - false

               Group membership : Parser user attribute for list of LDAP groups

 

Error: Same error

 


--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [hidden email].
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/3ebbad24-db8f-4d11-b05c-c16d33b8f365%40googlegroups.com.