It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Not able to login to Jira after integration with Okta for Single sign on

Hi,

I have configured the Jira and Okta integration as per the okta documentation https://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-Jira-On-Premise-SAML.html.

Now i am not able to login to Jira. getting the same login page again and again.

In logs i got the below error.

2018-09-24 07:28:11,322 http-nio-8080-exec-5 INFO anonymous 448x2416x2 1uk2flc 10.0.70.48,127.0.0.1 /secure/projectavatar [c.a.j.authenticator.okta.OktaJiraAuthenticator] User wasn't found not in session, nor in assertion, redirecting to: https://mycompany.oktapreview.com/app/jira_onprem/exkgbo2ta3Ht89xys0h7/sso/saml?RelayState=https%3A%2F%2Fissues.staging.dowjones.net%2Fsecure%2Fprojectavatar%3Fpid%3D16202%26avatarId%3D10011%26size%3Dsmall

Please help me to resolve this issue

1 answer

1 accepted

0 votes
Answer accepted
Brant Schroeder Community Leader Sep 24, 2018

Madhura,

  If you are using JIRA software you can access the DB and change the order of authentication provider allowing you to login using the local directory.  This will require you to shut down JIRA and make some changes to the DB.  

Start with 

select * from cwd_directory;

Note the id column for the OKTA and JIRA Internal directories (check the directory_name column)

The id for OKTA should be 0, set it to a temporary value, like 2, to free up 0 for your Internal Directory:

update cwd_directory set directory_position = 2 where id = <OKTA id from previous query>;

Then use a similar update statement to change the Internal directory position to 0. Afterward, change the temporary 2 to 1 so the directory_position column is 0 and 1.

Thanks @Brant Schroeder!

serapf-config.xml was not update properly. I had missed to update the original url to my jira url.

Its working fine after i updated it.

Regards,

Madhura

Hi,

I am also facing the same issue as the heading. I've integrated Jira On Prem with Okta but still if I open the Jira application from Okta, its prompting for the login credentials everytime.

As you said, I've ran the select query for crowd_directory and I can see only two entries. Where directory_position 0 set to Global Crowd and directory_position 1 set to Jira Internal directory.

Here I couldn't find the OKTA entries. Could you please suggest to fix this issue.

 

Thanks,

Zain

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted in Jira

Demo Den Ep. 7: New Jira Cloud Reports

Learn how to use two new reports for next-gen projects in Jira Cloud:  Cumulative flow diagram and Sprint burndown chart. Ivan Teong, Product Manager, Jira Software, demos the Cumulative ...

365 views 1 3
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you