Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,298,316
Community Members
 
Community Events
165
Community Groups

Crowd SSO Invalid Domain

Maggie
Maggie Jun 10, 2020

I use Crowd Server to administer security for Jira, Bitbucket, Confluence, & Bamboo. I'd like to set up single-sign on via Crowd, but I'm having problems with the SSO instructions.

Base Url: http://localhost:8095/crowd

User Url: http://[servername]:8095/crowd

SSO Domain: [servername]/* OR [servername]:8095/*

Crowd rejects both of the above SSO Domain options. I've reviewed the set up instructions, including the IETF's RFC 6265 document. As far as I can tell, this is what my SSO Domain should be set to. I've tried updating the cwd_property table in the SQL database, as well, but that basically locks me out of the Crowd UI. Do this SSO Domain need to have a ".com" suffix? This server is internally hosted, so all of our users reference it as "http://[servername]" when authenticating to it. What am I missing?

Any help would be most appreciated!

 

Crowd Version 4.0.0

Java JDK & JRE Version 8

Answer
Watch
Like Be the first to like this
508 views

1 answer

0 votes
Bruno Vincent
Bruno Vincent Jun 13, 2020

Hello @Maggie 

I guess [servername] is something like myserver.mydomain (e.g. crowd.intranet.local)

In such a case, the SSO Domain to be set in Crowd's console is mydomain (e.g. intranet.local)

Thus, whenever a user browses to jira.intranet.local / bitbucket.intranet.local / confluence.intranet.local / bamboo.intranet.local their browser sends a Crowd SSO cookie that is valid for the intranet.local domain (BTW as you can guess from that example, the domain name does not need to have the ".com" suffix).

Hope this helps.

Reply

Suggest an answer

Log in or Sign up to answer
Crowd
Crowd
TAGS
Community showcase
Natalia Baryshnikova
Natalia Baryshnikova
Published in Confluence

An update on Confluence Cloud customer feedback – June 2022

Hi everyone, We’re always looking at how to improve Confluence and customer feedback plays an important role in making sure we're investing in the areas that will bring the most value to the most c...

174 views 1 3
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you