Administrator Cannot Login After Reordering User Directories

Symptoms

After reordering User Directories in JIRA an administrator can't login any longer despite providing correct credentials.

Cause

There is a duplicating user with the same username in the directory in higher position. Currently, JIRA does not support 'shadowed' users. This is a known limitation tracked in JRA-23861 - An admin can lock themselves out of JIRA by changing the order of the User Directories.

Resolution

  1. Ask for assistance another administrator and ask them to revert the ordering modification.
  2. Temporally disable the directory in the higher position with help of SQL.
    (info) Ensure that you have valid backup of your data that could be used for the restore, if something goes wrong.
  3. List all currently defined directories:

    select id, directory_name, active from cwd_directory;
    ID    DIRECTORY_NAME          ACTIVE 
    ----- ----------------------- ------     
    10102 AD win2k8               1 
    1     JIRA Internal Directory 1     
    10106 Active Directory server 1
    3 row(s) in 0 ms
    
  4. Disable the conflicting directory. In our example we will disable directory with ID 10102:

    update cwd_directory set active=0 where id=10102
    
  5. Restart Tomcat in order to apply the change.

Was this helpful?

Thanks for your feedback!

Why was this unhelpful?

Have a question about this article?

See questions about this article

Powered by Confluence and Scroll Viewport