Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

OpenLDAP is not requested by Jira

Teddy Candale
Teddy Candale
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
May 21, 2019

Hello,

 

I use Jira Server 8. I have configured the use of a OpenLDAP directory.

When I click on 'Test Settings', everything is OK.

When I try to login to Jira, I get the message 'Sorry, your username and password are incorrect '.

When I check the OpenLDAP log,I see no new line. Please note that I can see lines corresponding to requests made by tools other than Jira.

 

I would like to know why Jira does not contact the OpenLDAP server. Is there any way to investigate further. I cannot find any information in logs.

 

Regards

Answer
Watch
Like Be the first to like this
346 views

1 answer

0 votes
Andy Heinzer
Andy Heinzer
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 22, 2019

Hi Teddy,

When you added this directory to Jira, did you select the directory type 'LDAP' or 'Internal with LDAP authentication'?  I ask because these two directory types work differently.  The LDAP will sync your user and group data from LDAP into Jira, while internal doesn't add users to Jira until they first try to login through Jira.   So I'd like to know which type you have here as the next steps can vary:

If LDAP type, let's see if that user account exists in Jira first.  You can do this in the User management section of Jira as an admin (Cog Icon -> User management -> Users).  Searching for this username should also be able to tell us what specific user directory that username exists in. Provided you have done at least one synchronization, that account should exist if your user object filter and other DN settings are correct.  If it's not there, then we need to focus on the DN and user object filter as these might not be set correctly to add the user account to Jira first.

If this is Internal with LDAP authentication, then again, we could have incorrect DN/user object filter settings

In either directory type, it could also be that Jira won't try to lookup this user account.  That can happen when say, you're trying to login with a user account that exists in a higher ordered directory already.  Example, Let's say your Jira internal user directory already has a username called jsmith, but so does LDAP.  Only the directory in the highest order in Jira will be able to login jsmith with those set of credentials.  More details on this in Managing multiple directories.

 

But, if we know the user accounts in Jira, and that LDAP is the highest ordered directory in Jira and they still can't login, then I'd recommend trying to follow the KB:  Unable to login to JIRA applications a login failed error message like yours can be too vague to identify the true cause sometimes.  Sometimes Jira's natively logging can give better clues, and sometimes we need to turn that logging up a level to DEBUG to see more detailed reasons for a login failure (authorization failures vs authentication failures).

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security