How to enable SSO in jenkins using crowd

I have integrated crowd and jenkins using crowd 2 plugin in jenkins, and centralized user management using crowd is working.

But i am stucked with SSO functionality.

2 answers

1 accepted

I have set session validation to 0. Now its working fine

0 votes

"It doesn't work" is not really very helpful as a question. You need to give details. What have you configured? What are the symptoms? What documentation did you follow and where did you do things differently from what the docs said? What do your logs say?

Hi Nic,

I have crowd and jenkins on same machine at ports 8095 and 8090. On jenkins i installed crowd 2 plugin.

I have set machine's IPAdress as sso domain in crowd.

I copied main library crowd-integration-client-2.7.1.jar and all other supporting jar from crowd's client folder to jenkins's WEB-INF/lib folder.

I copied crowd.properties file from crowd's client/conf folder and paste it into WEB-INF/classes and edit it with details

application.name jenkins

application.password jenkins

application.login.url http://IP:8090

crowd.server.url http://IP:8095/crowd/services/

crowd.base.url http://IP:8095/crowd/

session.isauthenticated session.isauthenticated

session.tokenkey crowd.token_key

session.validationinterval 2

session.lastvalidation session.lastvalidation

And done all configuration in jenkins's crowd part in security section.
enable SSO
set cokie.domain with IPAdress of machine
set cokie.tokenkey as crowd.token_key
After all these configuration i restart my jenkins
Now, problem that i am facing is when ever i login in or logout from jenkins it get reflects on crowd but when ever i do the same in crowd it do not get reflected on jenkins. Users are same.

Basically, i noticed that session created for any jenkins user do not get expire with other atlassian tools when someone logout from jira/stash/any other atlassian tool.

But when i logout from jenkins it get reflected on other tools.

is this officially documented anywhere? My jenkins deployment runs with the following /usr/bin/java -Dcom.sun.akuma.Daemon=daemonized -Djava.awt.headless=true -DJENKINS_HOME=/var/lib/jenkins -jar /usr/lib/jenkins/jenkins.war --logfile=/var/log/jenkins/jenkins.log --webroot=/var/cache/jenkins/war --daemon --httpPort=8082 --ajp13Port=-1 --debug=5 --handlerCountMax=100 --handlerCountMaxIdle=20 --prefix=/jenkins The war file is managed by RPM from Jenkins LTS, i assume on restart it unpacks it into the /var/cache/jenkins/war directory, however my concern is it is only cache directory and on shutdown/restart/update any changes i may apply could get blitzed I assume the proper location to put these auxilary components would be somewhere in /var/lib/jenkins

Suggest an answer

Log in or Join to answer
Community showcase
Teodora [Botron]
Published Thursday in Marketplace Apps

Jira Inferno: The Nine Circles of Jira Administration Hell

If you spend enough time as a Jira admin - whether you are managing a single, mid-sized instance, a large enterprise one or juggling multiple instances at once - you will eventually find yourself in ...

461 views 1 15
Read article

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you
Atlassian Team Tour

Join us on the Team Tour

We're bringing product updates and pro tips on teamwork to ten cities around the world.

Save your spot