JIRA end user unable to authenticate against Active Directory

End user previously able to log in is now unable to.

No changes have been made to this users account prior to incident.

Tried solutions:

- Active Directory password reset (tested account)

- JIRA internal password reset

- JIRA forgot password feature

- Re-indexed JIRA

- Created dummy account on JIRA, authenticates via Active Directory successfully.

2 answers

1 accepted

0 votes
Accepted answer

It seems to be some sort of AD sync / auth issue.

To resolve this I had to go into the database and modify 3 tables

cwd_user, cwd_membership, cwd_user_attributes

and change directory_id from 10000 (LDAP/AD authentication) to 1 (JIRA internal auth) referencing user ID

restart then change it back from 1 to 10000 and restart and this would resolve the issue.

Out of the hundreds of users we have, this has occured 3 times.

Do you have an internal directory? perhaps there is a duplicate ID, perhaps thats failing an auth check. Also, check your filters, are they 'exotic' or simplistic. Validate assumptions for lookup etc with ldap browsers like jXplorer or my favorite apache directory studio.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published Nov 29, 2018 in Jira

How to set up an incident workflow from the VP of Engineering at Sentry

Hey Atlassian community, I help lead engineering at Sentry, an open-source error-tracking and monitoring tool that integrates with Jira. We started using Jira Software Cloud internally last year, a...

1,107 views 0 8
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you