Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Problem logging in to Bamboo with JIRA as userserver using LDAP

Norbert
Norbert
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 11, 2017

We are using

Jira 7.3.3 on a Windows Server 2008 R2 and Bamboo 6.0.3 on a Windows Server 2012 R2. Basicly it works but we have a weird behaviour for several days

Bamboo is configured to use the JIRA Server as User repositories
Which works (synchronization is ok, I see the Users/groups in the Bamboo user list)

Most users in JIRA are setup to authenticate via LDAP (Active Directory) which also works fine on the JIRA server.

But if i try to logon to Bamboo only the user with no LDAP configuration works (our Admin User) for all other users the authentication fails with wrong username password.

 

I checked the logfiles but I'm not able to find anything suspicious.
The only thing where I know it was changed, was the IP Adress of the Bamboo server but the new one is also in the JIRA user server whitelist.

So what can i do now?

Where are the "wrong" login attempts logged?

 

Answer
Watch
Like Be the first to like this
718 views

2 answers

1 accepted

0 votes
Answer accepted
Norbert
Norbert
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 17, 2017

Looks like it was a temporary Network problem..

no Idea how it happend, but it is working again.

Reply
0 votes
robhit
robhit
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 11, 2017

Hi Norbert,

 

Few things we can test to narrow down the issue:

  • Check your <bamboo-home>/xml-data/configuration/atlassian-user.xml file and ensure that the hibernate settings are below the </ldap> configuration otherwise <hibernate> settings will be given preference for all the logins. This might be the case here.
  • You can enable the debug logging for the following:
    log4j.appender.com.atlassian.user.impl.ldap=DEBUG
    log4j.appender.com.atlassian.user.impl.ldap.security.authentication=DEBUG


    Set this in (bamboo-install/atlassian-bamboo/WEB-INF/classes/log4j.properties) and restart your bamboo
    After restart try to login again and see the logs for errors.


After all these, if you still can't figure out the issue, I would recommend logging a ticket with the support to investigate further.

Thanks

View More Comments
Norbert
Norbert
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 11, 2017

* there is only one entry, I configured it via Bamboo UI and there is only one selection possible (not like in JIRA where you can have several user directories)

* I enabled it
now I have the error

2017-10-11 16:10:52,980 ERROR [http-apr-8085-exec-1] [DefaultUserAccessor] Error in getUser():com.atlassian.crowd.exception.InvalidCrowdServiceException: The following URL does not specify a valid Crowd User Management REST service: http://xxxxxxxxxx:8080/rest/usermanagement/1/search?entity-type=group&start-index=0&max-results=-1
com.atlassian.user.EntityException: com.atlassian.crowd.exception.InvalidCrowdServiceException: The following URL does not specify a valid Crowd User Management REST service: http://insv01104:8080/rest/usermanagement/1/search?entity-type=group&start-index=0&max-results=-1

 Which is funny because As far as i understand this has nothing to do with LDAP

Like
Norbert
Norbert
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 11, 2017

I add the content of the crowd.properties
probably there is something wrong

session.lastvalidation=session.lastvalidation
session.tokenkey=session.tokenkey
crowd.server.url=http\://localhost\:8095/crowd/services/
application.name=bamboo
crowd.base.url=http\://xxxx\:8080
session.isauthenticated=session.isauthenticated
application.login.url=http\://localhost\:8095/crowd/console/
bamboo.crowd.cache.minutes=60
session.validationinterval=2
application.password=topsecretpwd

 

xxxx is the right servername
and application.name and password are also ok

Like
robhit
robhit
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 11, 2017

Can you confirm if you are using Crowd or LDAP ?

 

Also, share the atlassian-user.xml file configuration

Like
Norbert
Norbert
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
October 11, 2017

As described in my first question
I use Jira as User Server (AKA Crowd) and JIRA uses LDAP

the file is here

<atlassian-user>
    <repositories>
        <crowd name='Crowd Repository' key='crowd'/>
    </repositories>
</atlassian-user>
Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira Software
TAGS
AUG Leaders

Atlassian Community Events

    See all events