Not able to login to Jira after integration with Okta for Single sign on

Madhura A S September 24, 2018

Hi,

I have configured the Jira and Okta integration as per the okta documentation https://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-Jira-On-Premise-SAML.html.

Now i am not able to login to Jira. getting the same login page again and again.

In logs i got the below error.

2018-09-24 07:28:11,322 http-nio-8080-exec-5 INFO anonymous 448x2416x2 1uk2flc 10.0.70.48,127.0.0.1 /secure/projectavatar [c.a.j.authenticator.okta.OktaJiraAuthenticator] User wasn't found not in session, nor in assertion, redirecting to: https://mycompany.oktapreview.com/app/jira_onprem/exkgbo2ta3Ht89xys0h7/sso/saml?RelayState=https%3A%2F%2Fissues.staging.dowjones.net%2Fsecure%2Fprojectavatar%3Fpid%3D16202%26avatarId%3D10011%26size%3Dsmall

Please help me to resolve this issue

1 answer

1 accepted

0 votes
Answer accepted
Brant Schroeder
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
September 24, 2018

Madhura,

  If you are using JIRA software you can access the DB and change the order of authentication provider allowing you to login using the local directory.  This will require you to shut down JIRA and make some changes to the DB.  

Start with 

select * from cwd_directory;

Note the id column for the OKTA and JIRA Internal directories (check the directory_name column)

The id for OKTA should be 0, set it to a temporary value, like 2, to free up 0 for your Internal Directory:

update cwd_directory set directory_position = 2 where id = <OKTA id from previous query>;

Then use a similar update statement to change the Internal directory position to 0. Afterward, change the temporary 2 to 1 so the directory_position column is 0 and 1.

Madhura A S September 25, 2018

Thanks @Brant Schroeder!

serapf-config.xml was not update properly. I had missed to update the original url to my jira url.

Its working fine after i updated it.

Regards,

Madhura

Zain_Siddiqui September 16, 2019

Hi,

I am also facing the same issue as the heading. I've integrated Jira On Prem with Okta but still if I open the Jira application from Okta, its prompting for the login credentials everytime.

As you said, I've ran the select query for crowd_directory and I can see only two entries. Where directory_position 0 set to Global Crowd and directory_position 1 set to Jira Internal directory.

Here I couldn't find the OKTA entries. Could you please suggest to fix this issue.

 

Thanks,

Zain

Like Shoorjo B likes this

Suggest an answer

Log in or Sign up to answer