Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Importing JIRA user database to Crowd, documentation question

Jorge Rojas1
Jorge Rojas
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
May 9, 2014

I am trying to migrate from a JIRA User DB to Crowd SSO, but am having trouble picking between ATLASSIAN-SHA1 and ATLASSIAN-SECURITY in the setup. The two links below mention different selections, one being SHA1 and another being SECURITY. Can someone clarify which one I should use to ensure compatibility?

https://confluence.atlassian.com/display/CROWD/Configuring+an+Internal+Directory

https://confluence.atlassian.com/display/CROWD/Importing+Users+from+Atlassian+JIRA

Answer
Watch
Like Be the first to like this
470 views

1 answer

1 accepted

1 vote
Answer accepted
Fabio Racobaldo _Herzum_
Fabio Racobaldo _Herzum_
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
May 9, 2014

Hello Jorge,

"ATLASSIAN-SECURITY has effectively superceded ATLASSIAN-SHA1. I'm going to run through and update the documentation where it's out of date, but if at any point you're directed to select ATLASSIAN-SHA1 and the only option is ATLASSIAN-SECURITY, that's what to go for."

https://answers.atlassian.com/questions/37406/crowd-password-encryption-no-atlassian-sha1-option

Hope this helps,

Fabio

View More Comments
Caspar Krieger
Caspar Krieger
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 11, 2014

This is correct. To give some more information, ATLASSIAN-SECURITY is a special password encoder which will fall back to treating the passwords as SHA1 encoded if the normal verification process fails (and then proceed to upgrade the SHA1 password to the normal hashing scheme if the password is valid according to the SHA1 hash saved in the database). In other words, a password that's valid according to ATLASSIAN-SHA1 will also be valid for ATLASSIAN-SECURITY.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Crowd
Crowd
TAGS
AUG Leaders

Atlassian Community Events

    See all events