Active Directory
CloudBees CIVersion: 2.41.2
Tier 2: Compatible
Plugin ID: active-directory
Minimum Jenkins required: 2.504.3
Last released: 13 days, 11 minutes ago
This plugin enables authentication through Active Directory.
Security Warnings
- Man-in-the-middle vulnerability due to missing certificate check(last version affected: 2.2)
- Improper certificate validation(last version affected: 2.10)
- Missing permission check allows accessing domain health check page(last version affected: 2.19)
- Login allowed with empty password(last version affected: 2.19)
- Login allowed with hardcoded password(last version affected: 2.19)
- Authentication cache allows logging in with any password(last version affected: 2.19)
- CSRF vulnerability(last version affected: 2.19)
- User passwords transmitted in plain text(last version affected: 2.25)
- Password transmitted in plain text(last version affected: 2.30)
- RCE vulnerability from unvalidated LDAP referrals(last version affected: 2.41)
- LDAP injection vulnerability(last version affected: 2.41.1)
Download PluginOlder versions
Active Directory 2.41.2
SHA1:
6a30799b2071d5c0c4eae3c3378dcb3f908ebbcd
SHA256:
f80a6161d33c8cc278711929814fed7f9026bb707144cb93f41899420b91594b
Maintainers:
- Basil Crow
- Baptiste Mathus
- Carroll Chiou
- Evaristo Gutierrez
- Félix Belzunce Arcos
- Francisco Fernández
- Kohsuke Kawaguchi
- Raul Arabaolaza
- rsandell
- James Nord