We have configured the apache to log in using LDAP (AD). Once you log on through apache, JIRA gets the information and logs in automatically.
The problem is that JIRA doesn t log out after that. It stays logged, even if you try to force a log out. What can we do to solve that? This happened using Google Chrome.
Out of curiosity - why are you doing ldap authentication in Apache instead of JIRA? You'll get better tooling if you do it in JIRA... (group and email support). Right now won't people have to log in twice?
Here is my configuration in apache:
<Location /jira>
AuthType Basic
AuthName "Please enter your login and password"
AuthBasicProvider ldap
AuthLDAPURL "ldap://xxxxxxxxxxx:3268/dc=xxxx,dc=xxx,dc=xxx,dc=xx?sAMAccountName?sub?(objectClass=organizationalPerson)" NONE
AuthLDAPBindDN cn=xxxxxxx,ou=xxxxxxxx,ou=xxxxxxxxxxx,dc=xxx,dc=xxx,dc=xxx,dc=xx
AuthLDAPBindPassword "xxxxxxx"
AuthLDAPGroupAttribute member
AuthLDAPGroupAttributeIsDN on
AuthzLDAPAuthoritative off
require valid-user
Allow from All
RequestHeader unset Authorization
</Location>
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I suspect it's what I ran into when I used a custom authenticator - it logs out ok, but lands on a page which says "you can log in"... so it does.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi Fernando, can you give us more details about your LDAP-Apache integration? Are you using any kind of IWA implementation in JIRA or Apache, such as a custom authenticator to enable NTLM?
Cheers
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.