Active Directory
CloudBees CIVersion: 2.41.1
Tier 2: Compatible
Plugin ID: active-directory
Minimum Jenkins required: 2.504.3
Last released: 15 days, 21 hours ago
This plugin enables authentication through Active Directory.
Security Warnings
- Man-in-the-middle vulnerability due to missing certificate check(last version affected: 2.2)
- Improper certificate validation(last version affected: 2.10)
- Missing permission check allows accessing domain health check page(last version affected: 2.19)
- Login allowed with empty password(last version affected: 2.19)
- Login allowed with hardcoded password(last version affected: 2.19)
- Authentication cache allows logging in with any password(last version affected: 2.19)
- CSRF vulnerability(last version affected: 2.19)
- User passwords transmitted in plain text(last version affected: 2.25)
- Password transmitted in plain text(last version affected: 2.30)
- RCE vulnerability from unvalidated LDAP referrals(last version affected: 2.41)
Download PluginOlder versions
Active Directory 2.41.1
SHA1:
a5b9a83851d1f86a50f1fc049beac6dff78b3749
SHA256:
3184e7fe453eca6594d24b1a5c19588406445bab20d19e69472ebc44cd4a31f7
Maintainers:
- Basil Crow
- Baptiste Mathus
- Carroll Chiou
- Evaristo Gutierrez
- Félix Belzunce Arcos
- Francisco Fernández
- Kohsuke Kawaguchi
- Raul Arabaolaza
- rsandell
- James Nord