Project

General

Profile

Forums » Help »

Expired AD authentication account

Added by David Grice over 7 years ago

I have my Redmine instance set up for LDAP authentication, but the account used for performing LDAP authentication has expired and the password changed. This means that nobody can log in unless they have a local account, and nobody knows the local account details.

Is there any way I can modify the config files to turn off LDAP authentication or make some other change that would allow me to log on as admin to fix the problem?


Replies (1)

RE: Expired AD authentication account - Added by Djordjije Crni over 7 years ago

Change account type of Redmine user with admin privileges from LDAP to local, and set password.

bundle exec rails console production
> user = User.find_by_login("USERNAME_OF_REDMINE_ADMIN")
> user.auth_source_id = nil
> user.password = 'PASSWORD'
> user.save!
> quit

Log in and change Redmine LDAP authentication settings.
Do not use "real" user account for for LDAP bind.
Create dedicated "service" account in LDAP for this purpose.

    (1-1/1)