Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Groups
Explore all groups
Community resources

Crowd SSO only allowing user to access one other application

Nicholas DiCarl
Nicholas DiCarlo Mar 20, 2017

I have a VM running crowd 2.7.1, a VM running Confluence 5.4.4, and a third VM running JIRA 6.2.

I have successfully configured both confluence and JIRA to use Crowd for authentication and enabled SSO. My problem is, the SSO will only allow me to automatically authenticate with one of the two other applications in a browser session.

Say I log in to crowd. I can then open up JIRA in another tab and I am automatically authenticated. However, if I then open up Confluence in a third tab it directs me to the login page. After I log in to Confluence, if I log out of any one of the 3 applications I am logged out of all the others as well. 

If I log into crowd again, and this time open up confluence first, I will be automatically authenticated. But then if I open JIRA I am directed to the login page. This pattern holds for any order/combination of applications (If I log into JIRA, then open Confluence I will auto-authenticate, but I am taken to the login page when I try to access Crowd.)

What could be causing this?

Answer
Watch
Like Be the first to like this

2 answers

1 vote
Karalee Kikiros
Karalee Kikiros Mar 20, 2017

Proxy server causing issues?

View More Comments
Nicholas DiCarl
Nicholas DiCarlo Mar 21, 2017

I've thought about that, since it's sitting behind a load balancer, but that still wouldn't explain why it only allows me to auth to one. If neither of them were working then I'd agree, but SSO can force sign off on all three so I don't understand how the reverse isn't true as well.

Like
Reply
1 vote
Nicholas DiCarl
Nicholas DiCarlo Mar 21, 2017

I figured it out, and am posting here for anyone that has this issue in the future. The problem was a combination of things, but I was able to fix this (and a couple other issues) by enabling authentication caching and adding our load balancers to the list of trusted proxies.

Reply

Suggest an answer

Log in or Sign up to answer
Community showcase
Kate Clavet
Kate Clavet
Published 3 hours ago in Opsgenie

Getting the Most out of Atlassian and Opsgenie Together

We’re excited to invite you to this action-packed webinar where we will demonstrate how to integrate Opsgenie’s powerful alerting and on-call management tools with your entire Atlassian stack. Mar...

10 views 0 0
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you