How to update LDAP plugin

Using Jenkins
1

Hi folks,
after the upgrade Jenkins 2.474 to 2.476 (via Debian package) I got a Devil Jenkins shown at login time. Even the admin account was blocked. I learned the LDAP plugin has to be updated to version 733, but how is this supposed to work? Before the upgrade version 733 was not shown to upgrade to, and after the upgrade LDAP was broken and I was not allowed to login.

I reset the security settings in config.xml to false, accessed Jenkins without login and updated LDAP. After that I found that all LDAP settings were gone and I had to configure users from scratch:-(. Fortunately it was just a test system.

How can I upgrade without losing the LDAP settings and all users?

2

Before starting Jenkins after updating it via the package manager, download the ldap hpi from https://updates.jenkins.io/download/plugins/ldap/733.vd3700c27b_043/ldap.hpi and put it into JENKINS_HOME/plugins (overwriting an existing ldap.hpi)
Then start your Jenkins

3

There is just a file “ldap.jpi” and an “ldap” directory. No hpi file to overwrite. AFAIU the new ldpap.hpi file has to be renamed.

4

ah yes, delete the ldap.jpi rename the .hpi to .jpi

5

Thank you harridu and Markus. Always nice to see that someone else already asked your question and got a good answer.
But: Is it on purpose that the new version of the LDAP-plugin could not be updated via the regular plugin-update mechanism? Was downloading ldap.hpi and renaming it to ldap.jpi the plan for this upgrade?

6

This is an exceptional case I think. The ldap plugin is responsible for the login process so if the plugin doesn’t work then you can’t use Jenkins at all. Even though Jenkins maintainers try their best to stay compatible it is not always possible.
For almost any other plugin it would be possible to run the update after upgrading Jenkins.

1 Like