You are viewing the documentation of TeamCity 10.x and 2017.x, which is not the most recently released version of TeamCity.
View this page in the latest documentation or refer to the listing to choose the documentation corresponding to your TeamCity version.

Skip to end of metadata
Go to start of metadata

There are two types of authentication modules in TeamCity:

  • Credentials Authentication Module authenticates users with a login/password pair specified on the login page.
  • HTTP Authentication Module authenticates users with some information from certain HTTP request.

You can enable several credentials authentication modules and several HTTP authentication modules simultaneously.

On an attempt to login via the login page, TeamCity asks all the available credentials authentication modules in the order they are specified and the first one that can authenticate the user, authenticates him/her. And for any HTTP request, if there is no authenticated user yet, TeamCity asks all enabled HTTP authentication modules in the order they are specified and the first one that can authenticate the user, authenticates him/her (if no HTTP authentication module can authenticate the user for the specified HTTP request, TeamCity redirects the user to the login page).

TeamCity supports the following credentials authentication modules:

  • Built-in (cross-platform): Users and their passwords are maintained by TeamCity. New users are added by the TeamCity administrator (in the Administration area) or they can register themselves if the user registration at the first login is allowed by the administrator.
  • Microsoft Windows domain (cross platform): All NT domain users that can log on to the machine running the TeamCity server, can also log in to TeamCity using the same credentials. i.e. to log in to TeamCity users should provide domain and user name (DOMAIN\username) and their domain password.
  • LDAP server (cross-platform): Authentication is performed by directly logging into LDAP with credentials entered into the login form.

The following HTTP authentication modules are supported:

  • Basic HTTP (cross-platform): Allows to access certain web server pages and perform actions from various scripts.
  • NTLM HTTP (only for Windows servers): Allows to login using NTLM HTTP protocol. Depending on the client's web browser and operating system can provide an ability to login without typing the user's credentials manually.

Please refer to Configuring Authentication Settings for specific authentication modules configuration. See also Accessing Server by HTTP page for details about accessing server from your scripts using basic HTTP authentication.

See also: