Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Deleted user
0 / 0 points
badges earned

Your Points Tracker
  • Global
  • Feed

Badge for your thoughts?

You're enrolled in our new beta rewards program. Join our group to get the inside scoop and share your feedback.

Join group
Give the gift of kudos
You have 0 kudos available to give
Who do you want to recognize?
Why do you want to recognize them?
Great job appreciating your peers!
Check back soon to give more kudos.

Past Kudos Given
No kudos given
You haven't given any kudos yet. Share the love above and you'll see it here.

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Crowd as a SSO server for Ubuntu workstations?

So we have a bunch of Ubuntu 12.04 workstations which we would like to have authenticate to the company Active Directory.


Now we also have Crowd 2.8.2 which is acting as a SSO server for our JIRA, Fisheye, and Crucible logins – proxying those login requests to the company Active Directory.  


Is it difficult to configure Ubuntu and Crowd so that a user could log into an Ubuntu workstation with their Active Directory credentials and have Crowd proxy that login request?

1 answer

1 accepted

Philip, I suppose in theory this might possible, but it kind of jumps tiers in your architecture, probably with many issues associated with this jump.

Crowd provides a REST interface for applications like JIRA to obtain a security token, store it in a cookie, then when you navigate to the other application your identity is recovered via this cookie. These are all "web" tier technologies that do not belong at the OS tier.

Why would you want to go via Crowd if you can link your Ubuntu workstations to AD directly i.e. join them into domain:

Hi Ed. If I'm reading that SSO Ubuntu doc correctly, a required step is to join the Ubuntu workstation to the domain -- and by doing so IT would have the power to enforce policies on our development workstations. We *do not* want to give IT that power.

Look, I am not an expert on Ubuntu and joining these to domain, I am sure there are ways of not giving IT the power to enforce policies - but this question belongs in Ubuntu forums. I know the answer is "no" but I can't give you a definitive explanation why. Your question about doing SSO on OS level via Crowd being the SSO provider seems wrong on several levels, which probably imply misunderstanding of what Crowd is and how it works. I even struggle to come with an analogy to demonstrate this. Lets try like this: Your router/modem uses some kind of credentials to get you connected to Internet. What you are asking is using Google authentication to achieve the same thing (not just the same user/password, but the actual single-sign on via Google). Doesn't something seem wrong in this picture? Sure it may be possible and maybe someone will even find benefit in that, make a product, sell to modem-makers and earn millions in licensing fees, but why put the cart in front of the horse?

Hi Ed, Makes sense. Thanks

Hey Philip, may I ask what solution, if any, you decided to go with regarding your original question?

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Marketplace Apps & Integrations

☕️ Monday coffee with Jexo: Weekly Atlassian news roundup | 21st June 2021

Hi community 👋, as every Monday we're bringing you a quick update on what happened in the Atlassian ecosystem last week. There were a few interesting events like for example the announcement of th...

68 views 0 6
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you