Dear Team,
This is regarding SSO Integration with Jenkins from Atlassian Crowd
My Environment as follows,
Crowd Version – 3.2.0
Apache Tomcat Version - 9.0.10
Jenkins Version – 2.121.3(LTS)
Crowd2 Integration - 2.0.0
Currently through our Atlassian Crowd AD based centralized login is working perfectly with our Jenkins application. However I am looking the way to configure SSO. To enable SSO I tired the below.
In our Crowd application--> General Tab--> Single Sign-On cookie settings-->SSO domain--> I have added my Crowd server IP address.
Then in Jenkins Under Configure Global Security--> Crowd 2 --> Enabled Use SSO
Also in cookie.domain--> Entered my Crowd Server IP Address
As per the following link,
I have copied the below to my Jenkins.
i have edited my crowd.properties file with required information. Also I am passing my -Dcrowd.properties={FILE-PATH}/crowd.properties in my Jenkins Service. However still not working. Means (We have integrated Jenkins, Gerrit, SonarQube & Jira in our crowd.
First I have connected my Jira, then I tried to open my Jenkins link, But it is not connecting automatically. Could please help me enable SSO for Jenkins.
Hi @Mohan S
The problem here is the SSO domain. This should not be set to your Crowd server IP but to the domain name of your applications.
For instance, if your apps URLs are like 'https://jira.mydomain.com', 'https://jenkins.mydomain.com', 'https://crowd.mydomain.com' then your SSO domain must be set to mydomain.com both in Crowd and Jenkins configuration.
Hi Bruno, Ok thanks for the information. Actually in my Crowd server.i am trying to set the SSO Domain name as - .sa.sisl.testdomain.net whereas it shows below error.
The supplied domain is invalid.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
SSO Domain issue fixed earlier I have connected my crowd application IP address. Later with the help of - https://confluence.atlassian.com/crowdkb/unable-to-set-sso-domain-due-to-error-the-supplied-domain-is-invalid-203392701.html
Link corrected the same added my domain.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I have got the DNS entry for only to my Crowd Server, similarly do I need to use only domain(DNS) for my Jenkins application as well? Crowd doesn’t support IP address based application? Kindly confirm.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Crowd SSO relies upon a cookie, so yes, all your applications URLs must have the same domain name, which means that your Jenkins server must have a DNS entry in that very domain.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.