Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Can you have multiple crowd instances for the same atlassian instances?

P
P November 18, 2020

Meaning can we have two crowd instances used to authenticate against one jira instance? 

We just had an outage and I'm trying to think of a way to not have my current crowd server be a single point of failure. 

Is this something that can only be done with the datacenter version. 

 

Or can I just standup another instance. 

Answer
Watch
Like Be the first to like this
565 views

1 answer

1 accepted

0 votes
Answer accepted
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
November 18, 2020

Yes and no.

The answer to the title question is yes - you could have several Crowd servers, each one providing a list of users (and groups, and user attributes etc) to one Jira/Confluence/Bitbucket/etc

But the short answer to the body of the question is "no".  If you created three Crowd servers, and then added "Rob" and "Nic" to all three of them, with the same login, email, location, inside-leg-measurement and so-on, then your Jira would see six different users, two per directory.  You could then do some clever stuff with alisasing, but you'd have to do it for every user, and groups wouldn't support it.

This is not a solution for resilience.

Crowd Data Center is the solution for reslience - it will look like one directory, and if one of the nodes dies, the others will carry on providing that single directory with a single list of non-duplicated users.

View More Comments
P
P November 20, 2020

Thanks for explaining my options. 

Like
Craig Castle-Mead
Craig Castle-Mead
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
November 21, 2020

Hey Rob,

The answer from Nic doesn’t quite align with my experience (and we massively rely on Crowd). If you had two crowd servers connected to Jira, a user will be synced and authenticated from the first directory that the username exists in, there’s a connection timeout for each directory as well, so if first.last@domain.com is in the top 2 directories, directory 1 is attempted, if the timeout is reached, it’ll move on to directory 2.

As for group memberships, if a the same username is in GroupA in directory 1 and GroupB in directory 2, JIRA will place that user in GroupA and GroupB. 
 
Even though you may be able to improve your resiliency with a multi crowd instance approach, I’m with Nic, invest in doing it “properly” using Crowd DC in a multi node approach. Crowd is critical to every piece of our Atlassian stack and since we love to DC our uptime has been ~ 99.99% - the downtime we do get generally comes from the VPNs of DCs that Crowd relies on to pull its users from, and that’s not Crowds fault. 

CCM 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Crowd
Crowd
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events

    See all events