Changing LDAP Password

Issue

We have LDAP authentication set up and working fine, but the bind DN we use is a user ID that our security group requires that we change every 90 days.
Is there an easier way to update the password rather than disable security, connect, re-enable security, re-enter all the settings for LDAP, and set up the authorization strategy again? Can we just manually update config.xml directly?

Environment

CloudBees CI on modern cloud platforms - operations center
CloudBees CI on modern cloud platforms - managed controller
CloudBees CI on traditional platforms - operations center
CloudBees CI on traditional platforms - client controller
Jenkins
LDAP plugin

Resolution

It isn’t necessary to go through the lengthy procedure to change (update) the password used for the LDAP connection in Jenkins, which is encrypted in the config.xml.

To update the value, simply enter the new password into the password field in the config.xml as plain text (not encrypted), and then Jenkins will read that correctly. Once you start Jenkins and just re-save the Manage Jenkins -> Configure Global Security page, this will replace the plain-text value with the encrypted version.