change password LDAP-user in Jenkins

Hi,

When you use LDAP, it is assumed that the user would change there password with the LDAP provider service. For example, you can use Windows Active Directory as an LDAP service. In this case the user would change their password through Windows.

LDAP services have differing passwords setup and requirements. It's impossible for third party services to be able to handle that.

There are many services where I can "sign on" with my Twitter or Facebook account, but none where I can change my password.

--
David Weintraub
[hidden email]

On Aug 20, 2012, at 6:59 AM, Willem <[hidden email]> wrote:

> Hi,
>
> When Jenkins uses its own database, then a user can change his own password. But in my configuration Jenkins uses a LDAP (OpenDS) database. Unfortunately there isn't a field to change his/her own password (see screenshot of configure a user).
> What must i do to make this item viewed?
>
> Regards, Willem
>
> <configure_user_2012-08-20_1254.png>

<<LDAP services have differing passwords setup and requirements. It's impossible for third party services to be able to handle that.>>

I,m sorry, but i already did establish this among for JIRA. A user can change his own password in JIRA and through OpenDJ (with a PostgreSQL database) the new password immediately is affected for other applications. So, after that when the user wants to log on in Jenkins the new credentials are affected.
So, my question remains, if i use OpenDJ with LDAP where is item in Jenkins>people>configure that a user can change its password?

Regards, Willem


 
-----Oorspronkelijk bericht-----
Van: [hidden email] [mailto:[hidden email]] Namens Qazwart
Verzonden: maandag 20 augustus 2012 14:32
Aan: [hidden email]
CC: [hidden email]
Onderwerp: Re: change password LDAP-user in Jenkins

When you use LDAP, it is assumed that the user would change there password with the LDAP provider service. For example, you can use Windows Active Directory as an LDAP service. In this case the user would change their password through Windows.

LDAP services have differing passwords setup and requirements. It's impossible for third party services to be able to handle that.

There are many services where I can "sign on" with my Twitter or Facebook account, but none where I can change my password.

--
David Weintraub
[hidden email]

On Aug 20, 2012, at 6:59 AM, Willem <[hidden email]> wrote:

> Hi,
>
> When Jenkins uses its own database, then a user can change his own password. But in my configuration Jenkins uses a LDAP (OpenDS) database. Unfortunately there isn't a field to change his/her own password (see screenshot of configure a user).
> What must i do to make this item viewed?
>
> Regards, Willem
>
> <configure_user_2012-08-20_1254.png>

How did you setup Jira? Do you use Crowd?
You can setup Jira to users to only use LDAP for users and passwords (no internal Jira accounts),
 to create Jira accounts seeded from LDAP and use LDAP for passwords, or only internal Jira accounts (no LDAP).
Adding Crowd SSO to the mix, means that you can synchronize accounts between Jira and LDAP.

Jenkins either uses LDAP or uses internal accounts but it does not provide any functionality to update LDAP - like updating passwords. As Qazwart stated, you have to use another LDAP tool to achieve this - once the password is changed in LDAP all systems using LDAP will see the new password. If Jira provides this for then have your users change their LDAP password using Jira.

-----Original Message-----
From: [hidden email] [mailto:[hidden email]] On Behalf Of Dalen, van William
Sent: Tuesday, August 21, 2012 4:38 AM
To: [hidden email]
Subject: RE: change password LDAP-user in Jenkins

<<LDAP services have differing passwords setup and requirements. It's impossible for third party services to be able to handle that.>>

I,m sorry, but i already did establish this among for JIRA. A user can change his own password in JIRA and through OpenDJ (with a PostgreSQL database) the new password immediately is affected for other applications. So, after that when the user wants to log on in Jenkins the new credentials are affected.
So, my question remains, if i use OpenDJ with LDAP where is item in Jenkins>people>configure that a user can change its password?

Regards, Willem


 
-----Oorspronkelijk bericht-----
Van: [hidden email] [mailto:[hidden email]] Namens Qazwart
Verzonden: maandag 20 augustus 2012 14:32
Aan: [hidden email]
CC: [hidden email]
Onderwerp: Re: change password LDAP-user in Jenkins

When you use LDAP, it is assumed that the user would change there password with the LDAP provider service. For example, you can use Windows Active Directory as an LDAP service. In this case the user would change their password through Windows.

LDAP services have differing passwords setup and requirements. It's impossible for third party services to be able to handle that.

There are many services where I can "sign on" with my Twitter or Facebook account, but none where I can change my password.

--
David Weintraub
[hidden email]

On Aug 20, 2012, at 6:59 AM, Willem <[hidden email]> wrote:

> Hi,
>
> When Jenkins uses its own database, then a user can change his own password. But in my configuration Jenkins uses a LDAP (OpenDS) database. Unfortunately there isn't a field to change his/her own password (see screenshot of configure a user).
> What must i do to make this item viewed?
>
> Regards, Willem
>
> <configure_user_2012-08-20_1254.png>