LDAP auth DN Transform bug


I have upgraded YouTrack from 6.0 to 6.5 and none of the users could login using AD credentials. After a few hours of playing with LDAP auth settings, I have found out, that %u in DN Transform field only refers to user name without the domain (that was also entered by user).

The only way I can make authentication work is by setting DN Transform as DOMAIN\%u, which is an ugly solution, as we have more than one domain and creating an auth module for each of them is not really nice (especially when it's not allowed to have the same LDAP URL across different auth modules).

Full DOMAIN\Username is required to bind to LDAP.

1 comment
Comment actions Permalink
Official comment

Hi Donatas,

do understand you right, you've actually managed to get LDAP auth modules to work? As far as I can tell, the behaviour you're describing is as designed, but you're welcome to create a feature request in our tracker: https://youtrack.jetbrains.com/issues

Please sign in to leave a comment.