Reputation: 529
Implementing security for users in jenkins
I am after a better solution for security in Jenkins. After my play around this space, my current solution is to implement the 'Project-based Matrix Authorization Strategy'. I was previously considering running Jenkins behind Apache and control security through Apache. But during my trial with matrix based security, I was able to assign full access to logged in users and block anonymous users from seeing anything on the dashboard except login-page.
Before I proceed with my beta servers, I would like to seek experts advice to understand what I am doing is correct ?or there is a better way to do this. At the moment I have around 30 users created in my system.
If matrix based solution is the best and easiest, I would like to know, 1) Is it possible to group users and assign access based on groups ? So that I don't have to give users on individual basis
2) I also saw a post about 'Role strategy plug-in', but I couldn't see that in my Jenkins. Not sure if this plug-in out of date and/or nomore supported
Thanks in advance.
Upvotes: 0
Views: 390
Answers (1)
Reputation: 10382
I'm using the Role Strategy plugin with a LDPA directory and it works well.
You just have to install this plugin on your Jenkins server and to switch from "Matrix-based security" to "Role-Based Strategy".
Next, you will be able to define roles:
And assign them to users (or LDAP groups, if you have a LDAP directory):
Upvotes: 2
Related Questions
- Jenkins: Is there a Folder/View level security plugin
- How to restrict credentials in Jenkins?
- Jenkins - How to set authorization on project basis
- Can we restrict the usage of credential in Jenkins to some users only?
- How to restrict access to Jenkins?
- Working with jenkins credentials
- Jenkins user-based job security
- Jenkins project-based security
- Jenkins Project Based Security
- Jenkins - Defining users