Go through the following steps to enable SSO with Crowd:
- Shut down Jira if it is running.
- Open the seraph-config.xml file located in the JIRA_INSTALL/atlassian-jira/WEB-INF/classes directory in a text editor.
- Locate the line that contains com.atlassian.jira.security.login.JiraSeraphAuthenticator. Comment it out so that it looks like the following:
<!-- <authenticator class="com.atlassian.jira .security.login.JiraSeraphAuthenticator"/> -->
- Locate the line that contains com.atlassian.jira.security.login.SSOSeraphAuthenticator. Uncomment it so that it looks like the following:
<authenticator class="com.atlassian.jira .security.login.SSOSeraphAuthenticator"/>
- Copy the crowd.properties file to the JIRA_INSTALL/atlassian-jira/WEB-INF/classes directory.
- Open crowd.properties in a text editor and update the properties listed in the following table.
- Start up Jira again.
The following table lists the configuration parameters from the crowd.properties file:
Parameter | Value |
application.name | This is the application name configured in Crowd for Jira. |
application.password | This is the password for the application. |
application.login.url | This is Jira's base URL (you can get this from Jira's general configurations). |
crowd.base.url | This is Crowd's base URL. |
session.validationinterval | This is the duration (in minutes) that a Crowd SSO session will remain valid. Setting this to 0 will invalidate the session immediately, and will have a performance penalty. It is recommended that you set this at a higher value. |
Once Jira has started up again, it will participate in SSO sessions in all Crowd SSO-enabled applications—for example, if you have multiple Jira instances integrated with Crowd for SSO, you will only need to log in to one of Jira's.
Make sure you also have a backup copy of the file before you make any changes.