This page last changed on Sep 03, 2008 by smaddox.

Please follow the steps below to troubleshoot problems with SSO (single sign-on) in Crowd:

  1. Ensure that each application is using the same version of the crowd-integration-client JAR file. For example, if you are using Crowd 1.4, the crowd-integration-client-1.4.jar file should be located in the WEB-INF/lib directory of each Crowd-integrated application. For more information, please review this Knowledge Base article.

  2. Confirm that you can log in to each application with the same username and password.
    • In Crowd. click 'Applications' to view the Application Browser.
    • Click 'View' next to the application.
    • Click the 'Authentication Test' tab and follow these instructions.

      3. Set each application to use centralised authentication instead of SSO, as follows. Ensure that each Atlassian application's WEB-INF/classes/seraph-config.xml file is using the original authenticator class instead of the com.atlassian.crowd authenticator class. For example in JIRA, instead of this:
      <authenticator class="com.atlassian.crowd.integration.seraph.JIRAAuthenticator"/>


      you should have this:

      <authenticator class="com.atlassian.seraph.auth.DefaultAuthenticator"/>



  3. Once each application is using centralised authentication instead of SSO, confirm you can log in to each application with the same username and password.

  4. Ensure that each application is using the same sub-domain. For example:
    • JIRA -> jira.example.com
    • Confluence -> confluence.example.com
    • Crowd -> crowd.example.com

SSO will only work with applications on the same sub-domain. Why? Crowd uses a cookie to manage SSO and your browser only has access to cookies in the same sub domain, e.g. *.example.com.

This is the value that you set in the Domain property (e.g. .example.com) for Crowd to enable SSO. This is covered in the documentation on configuring the domain.

Still having trouble?

If the above steps have not solved your problem, please gather some debugging information as described below before contacting Atlassian support:

  1. In Crowd, go to 'Administration' -> 'Logging & Profiling'. Change the com.atlassian.crowd package to DEBUG.
  2. Replicate the SSO problem you are having.
  3. Please raise a support issue on our [Support System|http://support.atlassian.com, attaching your {CROWD}/atlassian-crowd.log file with the debug information gathered.
Document generated by Confluence on Sep 04, 2008 00:45