Issue
- You need to see how many failed attempts there are for your Jenkins instance.
- You need to see IP addresses where failed logins are occurring.
Environment
- CloudBees CI on modern platforms
- CloudBees CI on traditional platforms - Client Controller
- CloudBees CI Operations Center
- CloudBees Jenkins Platform - Client Controller
- CloudBees Jenkins Platform - Operations Center
- CloudBees Jenkins Distribution
- Jenkins LTS
Resolution
-
Install the Audit Trail Plugin on your Jenkins Instance.
- Navigate to the Audit Trail configuration.
- Manage Jenkins > Configure Jenkins > Audit Trail
- Configure the following settings in the Audit Trail configuration:
-
Click “Add Logger” and select
Console
. - Output should be set to
STD_ERR
. -
Click ““Advanced…”” for the Audit Trail configuration.
In the URL Patterns to Log section addloginError
at the end of the URL Patterns, just before the parenthesis.- The URL Patterns in this box can be customized to your liking if you would not like to log all of these patterns.
- Save your changes.
- Navigate to your Log Recorders.
- Manage Jenkins > System Logs
- Create a New Log Recorder.
- The name can be set to your liking.
- Add the following loggers to your newly created log recorder:
jenkins.security.SecurityListener
- set the logger to theFINE
level.hudson.plugins.audit_trail.AuditTrailFilter
- set the logger to theFINE
level.- Save your changes.
- When there is a failed login attempt you will now see them report in your new logger with the client’s IP Address.
0 Comments