After upgrading gitlab-ce to 11.3.4, some LDAP (Active Directory) users get an “Invalid credentials” message when logging in, and the error message
GitLab: API is not accessible fatal: Could not read from remote repository. Please make sure you have the correct access rights and the repository exists.
when trying to clone or push an existing project. Git logs in this case indicate “Access denied”. It is certain that the LDAP/AD account credentials are valid.
The complicating fact is that when I say “upgrade”, we went from 8.15.3 to 11.3.4 (with updates to 8.17.8, 9.5.10, and 10.8.7 in the middle), and I’m not certain where in that process the problem first started.
Any ideas on where to start tracking this issue down? Thanks in advance!