Issue
-
You need to see how many failed attempts there are for your Jenkins instance.
-
You need to see IP addresses where failed logins are occurring.
Resolution
-
Install the Audit Trail Plugin on your Jenkins Instance.
-
Navigate to the Audit Trail configuration.
-
Manage Jenkins > Configure Jenkins > Audit Trail
-
-
Configure the following settings in the Audit Trail configuration:
-
Click "Add Logger" and select
Console
. -
Output should be set to
STD_ERR
. -
Click ""Advanced…"" for the Audit Trail configuration. In the URL Patterns to Log section add
loginError
at the end of the URL Patterns, just before the parenthesis.-
The URL Patterns in this box can be customized to your liking if you would not like to log all of these patterns.
-
-
Save your changes.
-
-
Navigate to your Log Recorders.
-
Manage Jenkins > System Logs
-
-
Create a New Log Recorder.
-
The name can be set to your liking.
-
-
Add the following loggers to your newly created log recorder:
-
jenkins.security.SecurityListener
- set the logger to theFINE
level. -
hudson.plugins.audit_trail.AuditTrailFilter
- set the logger to theFINE
level.
-
-
Save your changes.
-
When there is a failed login attempt you will now see them report in your new logger with the client’s IP Address.