You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
Next: Root
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
The Atlassian Community can help you and your team get more value out of Atlassian products and practices.
Based on unofficial(?) information it would seem that while Crowd does not officially support clustering, there might be some setups where it can be made to work.
The set-up that we have in mind is:
So my questions are:
We do exactly this, except we also do administration tasks through the LB.
Answers:
1. Yes, although multi-step wizards (adding an application) don't work correctly if passed back through different servers (via LB). We turn off LB for the minute or so it takes to add a new application. Modifying an applicaiton works through the LB.
2. No.
3. Yes, you need to make sure you are using a Database Cache (not Memory) for Authentication Token Storage.
4. No, or at least that was what was mentioned in the forums years ago when I asked.
Cheers,
Graham.
I know this question was back in 2012, but I just wanted to give everyone else who is looking for the solution just like me. Here's how I solved it.
The way I solved it is to add the load balancer IP address(es) that it trying to connect. If you look at the crowd log, you'll see the ip from the load balancer to the application, see below. Once I added the IP it's coming from in the crowd application/confluence/remote addresses and then restart confluence. I was able to login.
example log from Crowd: Client with address '10.0.15.210' is forbidden from making requests to application 'confluence'
I'm using AWS Load Balancer and EC2. It's connecting to my Confluence via internal IP instead of the DNS name. You don't need to change the crowd.properties and I have it set to the DNS name. You just need to add the internal IP that load balancer is requesting.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Load Balancer shouldn't get new IPs randomly. It's set once you created one. If you worried, then add the entire VPC like 10.0.0.0./16.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Depends on your LB, NLB can have static IPs (but only public IP and one per AZ), ALB's and Classic can't. If an LB becomes unhealthy etc you will be switched seamlessly to a healthy one with new IPs (it's the cloud and how AWS guarantee high levels of availability), hence why you should use your LB DNS.
Your suggestion of using VPC CIDR is a valid alternative.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.