Standard Security Setup

Skip to end of metadata
Go to start of metadata

This page discusses what probably is the most common set up — let Jenkins maintain its own user database (where people can sign up to have their own accounts), and you as the administrator decides who can do what in Jenkins.

Initial steps

  1. Go to the Configure Global Security screen (http://server/jenkins/configureSecurity/) and choose "enable security". An alternate URL to try is http://server:8080/configureSecurity.
  2. Select "Jenkins's own user database" as the security realm
  3. Place a check mark next to "Allow users to sign up"
  4. Select "Matrix-based security" as the authorization
  5. Give anonymous user the read access
  6. In the text box below the table, type in your user name (you'd be creating this later) and click "add"
  7. Give yourself a full access by checking the entire row for your user name
  8. Scroll all the way to the bottom, click "save"

The configuration should look like the picture below:

At this point, you'll be taken back to the top page, and Jenkins is successfully secured.

Restart Jenkins (service jenkins restart)

Now you need to create an user account for yourself.

  1. Click "login" link at the top right portion of the page
  2. Choose "create an account"
  3. Use the user name you've used in the above step, and fill in the rest.

If everything works smoothly, you are now logged on as yourself with full permissions. If something goes wrong, follow this to reset the security setting.

Active Directory Setup On Linux Server

If Jenkins is running on a Windows server then it is better to install the Active Directory plugin.

On a Linux host you have an option to either use the Active Directory plugin or an LDAP based authentication. To configure the LDAP to work with AD provide the following:

Root DN dc=mycompnay,dc=com
User Search Filter sAMAccountName={0}
Manager DN cn=mymanageruser,ou=users,ou=na,ou=mycompany,dc=mycompany,dc=com
Manager Password *****

Note, that the Manager DN may actually very depending on your AD set up.


See LDAP Plugin.


More docs to come. Suggestions on what needs to be written are greatly appreciated.

Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.

Add Comment