Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Next challenges

Recent achievements

  • Global
  • Personal

Recognition

  • Give kudos
  • Received
  • Given

Leaderboard

  • Global

Trophy case

Kudos (beta program)

Kudos logo

You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.

View group

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage
Highlighted

Our LDAP Users are Unable to Login After Upgrade

Can someone tell us how to fix this? None of us can login to our own confluence after the upgrade.......

1 comment

Hi S.Toyo, 

Below are few questions on the issue,

Do you see any errors in the logs file during the authentication of a LDAP user?

Did you upgrade the confluence or migrated to a different server? 

Did you try to click on Synchronise option under user directories of confluence? Any errors reported?

Are you using LDAP or LDAPS? If its LDAPS? did the SSL certs installed in JAVA keystore?

 

thanks

Shankar

@Shankar Asam _Appfire_I do see some weird looking active directory failures in our logs.

 

We just upgraded our confluence not migrate to a different server.

 

We have not clicked on synchronize option under the User Directories yet. In order for us to even get back into our confluence we had to figure out what was our local admin account. Because that was literally the ONLY account that worked after we upgraded. It killed everyone elses access to get into our Confluence page.

 

I believe we are using just LDAP. How can I tell if we are using LDAPS? I was not the previous person who setup and install our Confluence. I am just the person upgrading it for the first time. So I am new to this. But I did notice that before I upgraded that server.xml file did have a section in it that had a keystore password. I am not quite sure what to do with that so I just copy + pasted it into the newly created server.xml after I upgraded Confluence......

 

So I am not sure how to RE-INSTALL the SSL cert into the JAVA keystore? I do notice that when we try now access our confluence page through Chrome browser it asks if I want to trust this website. Is this because I didn't re-import my cert? Please help!

The errors in the logs will tell us what kind of issue you're running into. If you're unable to figure out the admin account name, you could look at below article from Atlassian on identifying the admin account.

https://confluence.atlassian.com/conf64/restore-passwords-to-recover-admin-user-rights-936511358.html

Once, you're able to identify - login in with local admin account (internal) and try checking the synchronise option and also will be able to see the directory configuration summary to identify LDAP vs LDAPS. 

The keystore related stuff in server.xml tells that your confluence is running on HTTPS. check the server.xml to see where the keystore file was located and try to restore it or available to the new confluence. If required, you might need to point your JAVA_HOME to the older JAVA_HOME used by your previous installation  and check if the issue gets resolved. You can also visit the below link for SSL certs import;

https://confluence.atlassian.com/conf63/running-confluence-over-ssl-or-https-929729905.html

 

Regards,

Like S_ Toyo likes this

@Shankar Asam _Appfire_I tried to login and synchronize and it failed.

 

2019-08-07_13-44-27.png

It's certainly SSL certs issue. You are connecting the LDAP over SSL so it requires the LDAP certs should be loaded into your Confluence's Java Keystore. Please see the following KB article from Atlassian on Importing certs. 

https://confluence.atlassian.com/kb/unable-to-connect-to-ssl-services-due-to-pkix-path-building-failed-error-779355358.html

-Shankar

Comment

Log in or Sign up to comment
TAGS
Community showcase
Posted in Confluence

What do you think is the most *delightful* Confluence feature? Comment for a prize!

- Create your own custom emoji 🔥 - "Shake for Feedback" on mobile 📱 - An endless supply of GIFs via GIPHY 🤩 Is there anything quite as nice as a pleasant surprise? Comment below with what...

494 views 24 9
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you