I am running Jenkins within Tomcat 7.
I want to log in and operate Jenkins securely over the web.
I set up an admin user and password. Logging in with these credentials works fine initially.
Then, after a while, I try to log in but submitting my login request just sends me back to the login screen (but without the "Invalid login information. Please try again." message).
I have to hack around it by disabling security in config.xml, and re-enabling it via the "Configure Global Security" page. I've tried two different Security Realms: "Jenkins’ own user database" and "Unix user/group database". They both work initially then eventually fail.
Related
I installed jenkins on a CentOS system. Now I am able to open the jenkins web page on localhost:8080. I want to add a login required for accessing this url. I enabled security on 'Configure Global Security' page then set 'Unix user/group database' under 'Security Realm'. In Authorization part, I set 'Logged-in users can do anything'. By doing this configuration, only logged in user can do build and modification on jobs. But there is a problem that users can still read all the jobs information without log in. How can I prevent anonymous users to access my jenkins web page?
Using the "Matrix based security" helps you here. And then uncheck all the checkboxes from the Anonymous user.
Under the "Jenkins’ own user database" also uncheck the "Allow users to sign up" sign up option. This way you can prevent unwanted users.
Good luck!
In our company, we are using Jenkins as our CI tool. But from few days, we are facing issue during jenkins login. The login page re-appears for some users and it does not allow them to login to jenkins. These users are there in the system from long time and they are not new users nor they have entered wrong password. They have tried several times, but it does not allow them to login. What could be the issue?? Any help?
Users are authenticated through atlassian crowd.
It seems cookies/chaches are a problem. Deleting the cookies for jenkins solves the problem in the browser. Opened a tab in incognito mode and then I am able to login.
I have a build service setup within TFS and I have a special AD user set as the user to run the service. When I enter the credentials for that user within the TFS Admin Console, everything works fine. For some reason, after so long (not sure how long yet) the Build Service stops running. When I look into the issue, it is because the password is blank. Any ideas why this would be getting cleared out? If I put the password back in, everything will work fine until is clears out again.
Is the account a member of the local administrators group? There could be a group policy within AD that removes Log on as Service rights from such accounts on restart. See this for an example
I took over a Rails app and am trying to get the Salesforce.com API credentials set up for my user account.
I'm set as a system admin with "Developer Mode" on (though I have no clue what that does, I just saw it set on the previous account.)
We have a sandbox. I click the login link on it, enter my sandbox username (email#domain.com.sandbox), enter my password, and get "Login attempt has failed".
I know my password is okay since I've logged into the production site several times. Using different domains (test.salesforce.com, etc) doesn't help either.
Edit to clarify where I'm stuck:
I'm logged into the production site and under "my sandboxes" there's a login link next to each sandbox which takes you to the correct server and pre-fills your sandbox username.
So, my issues are with that, getting logged into the sandbox web interface.
I do understand the security tokens and have my production API stuff set up, but I'd rather try my changes out on the sandbox first! From the examples I've seen, the sandbox security tokens are different, so I'm trying to log into the sandbox web interface for that.
My user account was created after the sandbox. So, it wasn't in the sandbox.
A sandbox refresh added my account into the sandbox.
Pretty basic mistake.
You won't be able to login from https://login.salesforce.com that's only for production.
You're correct to use the sandbox instance https://test.salesforce.com (or https://cs1.salesforce.com, https://cs2.salesforce.com, etc.)
I'm sure you figured out email#domain.com is your regular username, but the "sandbox" part is the actual name of your sandbox. So if you named your sandbox as "sbx" you would login as joe#example.com.sbx
If that doesn't work, go to your production organization where you can login. Navigate to Setup -> Data Management -> Sandbox and then click the Login button next to the sandbox you wish you login to.
Firstly - having developer mode on just offers you a subtly different view of Pages, making it easier to write your force.com solutions (it splits the View with the Controller) but this is not affecting your login issues:
I'm not 100% clear whether you are failing to log into your sandbox's website, or whether you are failing to connect via the API.
If you cannot use your production password on the sandbox, you will need to get someone who is an admin on that sandbox to reset your password for you.
If you can use your production password to log into the sandbox, but cannot use it to hook up to the API, then this is the problem:
Salesforce.com trusts users that come through the web UI; However, in order to log in to the API, you need to append an extra bit of user information to your password - this is your Security token.
You can reset this in Setup...My Personal Information... Reset MY Security Token
the token will get emailed to you - it will be some obscure alpha-numeric token. Copy this and paste it to the end of your password. For example if your password was 'arthur', and the token was ABC123def, the credentials to pass through would be:
login: email#domain.com.sandbox
password: arthurABC123def
We have our F5 LTM BIG-IP® Configuration Utility setup in an Active/Passive setup, and have different links to each admin utility console.
Is it possible to display the Failover Status (active vs standby) on the Login Page so you don't have to login to see the status? It's frustrating to login only to see you've logged into the Standby node.
I don't believe so, but if you go to System>Preferences you could modify the "Security Banner Text To Show On The Login Screen". Generally, here you would specify a custom security message which provides legal protection to your organization, such as a message stating that unauthorized access is forbidden and what password restriction that other users should be specifying (the login screen of the BIG-IP Configuration utility displays the text that you specify in this field). Here, you could probably mention which is active and which is standby without syncing this change to the group. Just make sure that whenever you fail-over from one device to the other (shouldn't be too often); that you simply adjust this message and you should therefore be good to go with that. Hope this helps :)
https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/bigip-datacenter-firewall-config-11-1-0/3.html