Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Internal Authentication not working

arikevin
arikevin July 1, 2018

I deleted an linked application in Jira and it broke external authentication with Crowd.  It has been a few days, so what I did is a little foggy.  

I used the instructions to enable the Jira Internal Directory and admin user.

I  reset the admin user's password (user is root). Using the example code to reset password to 'sphere'.

User exists, has jira-administrator and jira-user privileges.

Crowd directory is disabled. Internal directory ordered to the top of the list.

NOT using Crowd SSO (it is disabled).

Unable to login user root. Log says "tried to login but they do not have USE permission or weren't found."

The log is posting the following:

 ____ Attempting login for : '/rest/gadget/1.0/login'

 login : 'root' and password provided - remember me : false - attempting login request

 runAuthentication : 'root' does not require elevated security check.  Attempting authentication...

 login : 'root' has not been authenticated

 login : 'root' could not be authenticated with the given password

 login : 'root' tried to login but they do not have USE permission or weren't found. Deleting remember 

 

Any help is appreciated.

Thank you

Kevin

 

 

Answer
Watch
Like Be the first to like this
650 views

4 answers

0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
July 3, 2018

You might have reset a password for admin (the use of "sphere" suggests you've been using the standard SQL reset method), but are you sure the admin user is in one of the groups that gives it the ability to log in too?

View More Comments
arikevin
arikevin July 4, 2018

Thanks Nic for taking time to look at this.

Yes, I am using the SQL reset method, I am pretty sure the user has the ability to login.  cwd_membership has this user a member of the jira-administrators and jira-users group.  Global permissions has given the jira-users the USE permission, the jira-administrators has the System Administrators and Administrators permissions.

I am willing to pay someone to help me sort this out.  If you think you can help, contact me off line.

Thanks

Kevin

Like
Reply
0 votes
arikevin
arikevin July 1, 2018

Is there any other reason Jira might not be using ANY directory?  It feels like even the internal directory is being ignored.  It is active, and it is at the top of the list.  But it refuses to acknowledge the admin user I am using.

Reply
0 votes
arikevin
arikevin July 1, 2018

I turned on a number of security logs in log4j.properties, but I am not seeing anything that would help me understand why I am unable to authenticate the user.

Reply
0 votes
arikevin
arikevin July 1, 2018

I also tried just resetting the password via the GUI, but I get an error 500 and the following in the log:

"User login details can not be reset for this JIRA site."

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.