How can I limit Jenkins LDAP access to users in a specific groupOfNames?

Question

I can configure Jenkins so it limits access to users on my ldap server by setting the Server and Root DN without a problem.

Now I want to tie down access a little more and only allow access to members of the groupOfNames cn=MyProject,ou=Group,dc=bogus,dc=biz, but I don't see how to do that in Jenkins.

Can someone explain how they configured Jenkins or Hudson to handle something like this ?

Thanks !

Answer 1

NOTE: I'm not sure if this would work for LDAP (we use active directory)

• In the project configuration page, check Matrix-based security.
• Remove all access for anonymous
• Add your 'groupOfNames' to the "user/group to add" and give them the rights you want to.

Any user in that group should get the rights you assign. This is how we did it.