Werk #1059: LDAP: Using configured user filter during login to prevent temporary created users

Component

User interface

Title

LDAP: Using configured user filter during login to prevent temporary created users

Date

Jul 17, 2014

Level

Trivial Change

Class

Bug Fix

Compatibility

Compatible - no manual interaction needed

Checkmk versions & editions

1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5 Not yet released	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)
1.2.5i5	Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk MSP (CME)

When a LDAP user that is not allowed to log in to multisite according to the "LDAP User Settings" OU and filtering options tries to login with valid credentials Multisite created a temporary user entry just to remove it later during the login process. The user can not access Multisite, but an error message is shown and a log entry in the WATO audit log is being created.

This has been changed that the initial credentials check takes the filters from "LDAP User Settings" into account. Leaving all not permitted users with the message "invalid credentials".

To the list of all Werks