Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Groups
Explore all groups
Community resources

Crowd SSO only allowing user to access one other application

Nicholas DiCarl
Nicholas DiCarlo Mar 20, 2017

I have a VM running crowd 2.7.1, a VM running Confluence 5.4.4, and a third VM running JIRA 6.2.

I have successfully configured both confluence and JIRA to use Crowd for authentication and enabled SSO. My problem is, the SSO will only allow me to automatically authenticate with one of the two other applications in a browser session.

Say I log in to crowd. I can then open up JIRA in another tab and I am automatically authenticated. However, if I then open up Confluence in a third tab it directs me to the login page. After I log in to Confluence, if I log out of any one of the 3 applications I am logged out of all the others as well. 

If I log into crowd again, and this time open up confluence first, I will be automatically authenticated. But then if I open JIRA I am directed to the login page. This pattern holds for any order/combination of applications (If I log into JIRA, then open Confluence I will auto-authenticate, but I am taken to the login page when I try to access Crowd.)

What could be causing this?

Answer
Watch
Like Be the first to like this

2 answers

This widget could not be displayed.
Karalee Kikiros
Karalee Kikiros Mar 20, 2017

Proxy server causing issues?

View More Comments
Nicholas DiCarl
Nicholas DiCarlo Mar 21, 2017

I've thought about that, since it's sitting behind a load balancer, but that still wouldn't explain why it only allows me to auth to one. If neither of them were working then I'd agree, but SSO can force sign off on all three so I don't understand how the reverse isn't true as well.

Reply
This widget could not be displayed.
Nicholas DiCarl
Nicholas DiCarlo Mar 21, 2017

I figured it out, and am posting here for anyone that has this issue in the future. The problem was a combination of things, but I was able to fix this (and a couple other issues) by enabling authentication caching and adding our load balancers to the list of trusted proxies.

Reply

Suggest an answer

Log in or Sign up to answer
Atlassian Summit 2018

Meet the community IRL

Atlassian Summit is an excellent opportunity for in-person support, training, and networking.

Learn more
Community showcase
Maggie Roney
Maggie Roney
Published Feb 27, 2018 in Crowd

The Crowd team is looking for feedback on Server & Data Center customers' identity strategies!

Do you own more than one Server or Data Center product? Do you have challenges provisioning users across your Atlassian products? Are you spending a lot of time integrating each Atlassian product wit...

1,391 views 6 14
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you