In Artifactory's access.log, all accesses are logged with the proper IP address, EXCEPT "DENIED LOGIN" via repository URLs. If a remote client directly accesses a repository/artifact URL (e.g. via Maven) with incorrect credentials, the IP of the Artifactory server itself will be logged.
The issue seems to be regardless of auth backend and reverse proxy. I have tested it against LDAP and local users and trough the reverse proxy and with direct access. The result always is the same.
- install Artifactory
- turn anonymous access off
- create a user
- create a repository
- (maybe optional) deploy an artifact
- access the artifact's URL directly while providing a wrong password for the user