What could cause an Anonymous log in?

I am a system admin for our Confluence Wiki v5.8.14.   I am having instances of people, who have signed in and had to be verified by our system (LDAP), being identified by Confluence as Anonymous.   I have noticed this in several reports I get that "Anonymous has changed..." or "As Anonymous, you do not have authority to ...".  I have even seen some spaces created and the space owner is Anonymous.

I am wondering how this can occur.  Where do I look for the hole in my system that allows people past my security, or is Confluence being forgetful about who signed in?

2 answers

If I understand you correctly, you first need to figure out if the anonymous users are verified but corrupt  users or strangers.

Confluence offers anonymous bind for LDAP. So logging in via LDAP will give you anonymous user permissions in Confluence. (see here). Maybe you configured your LDAP like this by mistake.

If this is not the case you might have the wrong permissions on your Confluence. Therefore you have to check the permissions, whether anonymous users are allowed to view, create and edit pages or spaces. If that is the case you need to change this.

Another (but probably unlikely) reason might be a scheduler. At least in my case I developed a custom plugin which creates and edits pages within a job. This job uses an anonymous user account. Maybe you're using a plugin that has a similar behaviour?

Marcel,

Thank you for the reply, it has given me some areas to check into.   I had the people in charge of the LDAP look into bind idea.   Bind is not active in our system was their reply (I am not sure I even understand what that is but we do not seem to be using it)

As to Anonymous permissions our default when creating a space is that Anonymous do not have any permissions.  I, however, do not know of a way to check through our 3,000+ spaces to find out if anyone has changed this setting.  We tell them not to, but Admins are like cats sometimes, they know they know better than you do.

I do hope we can solve this problem soon.   I appreciate your help.

Greg

Suggest an answer

Log in or Sign up to answer
Atlassian Community Anniversary

Happy Anniversary, Atlassian Community!

This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.

Read more
Community showcase
Kesha Thillainayagam
Posted Apr 13, 2018 in Confluence

We want to hear how your non-technical teams are using Confluence!

Hi Community! Kesha (kay-sha) from the Confluence marketing team here! Can you share stories with us on how your non-technical (think Marketing, Sales, HR, legal, etc.) teams are using Confluen...

2,922 views 27 12
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you