Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Groups
Explore all groups
Community resources

What is the best way to configure directories in Crowd?

KMcKenzie
KMcKenzie Aug 06, 2013

We are running Crowd with Jira, Fisheye and Crucible in our company with about 500-1000 users.

What are the best practices in configuring Crowd directories to control authentication to each application? We are using a delegated authentication directory and will have many users needing access to all applications and many different groups.

Would it be best to create one Crowd directory containing all of the users/groups for each application ex.

  • Company directory
    • jira-users
    • jira-administrators
    • jira-developers
    • fisheye-users
    • fisheye-administrators
    • fisheye-developers
    • crucible-users
    • crucible-administrators
    • crucible-developers

~OR

Create a separate Crowd directory for each application ex.

  • Jira directory
    • jira-users
    • jira-administrators
    • jira-developers
  • Fisheye directory
    • fisheye-users
    • fisheye-administrators
    • fisheye-developers
  • Crucible directory
    • crucible-users
    • crucible-administrators
    • crucible-developers

Also we will be using SSO-- is this configurable with both options?

Thanks!

Answer
Watch
Like Be the first to like this

2 answers

1 accepted

1 vote
Accepted answer
Dave Theodore [Coyote Creek Consulting]
Dave Theodore [Coyote Creek Consulting] Community Champion Aug 07, 2013

I thik it really boils down to how users will use the various tools. If everyone will use everything and can see everything, I'd keep things simple and use the same group to control similar access on all tools. For example, create a "users" group, dump everyone in there and grant the "users" group permissions to log in and do basic functions on each application. If you have more distinction with your userbase, you might need to break things up as you suggest. I see companies that do this both ways. It just depends on your license and security situation. I'm in favor of not adding complexity for complexity's sake, personally.

Reply
0 votes
Shun Hirayanagi
Shun Hirayanagi Aug 07, 2013

If your situation permits, I recommendone Crowd directory as Dave mentioned. If you have multiple Crowd directories, you have to add a user who will use all of Jira, Fishehe and Crucible into each directory. It's a troublesome task.

You can also use multiple Crowd directories in order to use multiple directory types. For example, one direcory is LDAP Delegated Authentication and another is Crowd Internal Directory.

View More Comments
KMcKenzie
KMcKenzie Aug 07, 2013

Thanks Shun!

Will all of the groups within that directory show up in each application?

If so, does that count towards the license limit in the application?

Like
Peter Van de Voorde
Peter Van de Voorde Aug 07, 2013

Yes all groups will show up in each application.

But only the people who can actually log into your application count towards your license limit.

Best regards,

Peter

Like
Reply

Suggest an answer

Log in or Sign up to answer
Community showcase
Jake Bartlett
Jake Bartlett
Posted Tuesday in Statuspage

Introducing Statuspage Getting Started guides! First up: What is Statuspage?

Over the next several weeks we'll be sharing some of our Getting Started guides here in the community. Throughout this series of posts, we'd love to hear from customers and non-customers ab...

191 views 4 1
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you