Skip to Content
Skip Breadcrumb

I have tried to access Atlassian Crowd via a LDAP interface but atlassian does not offer such a interface,currently.
The reason why I nee to use the LDAP interface is that a lot of software products offer authentication against a LDAP backend but not against

Last modified: Sep 29 2017

Crowd offers CrwodID for external access which is the obsolete OpenID 2.0.
There is a REST API for anyone who want to integreate Crowd in his app.
I have contacted Atlassian and asked if there is a plan when they will support the current active OpenID Connect standard. As usual for such companies they just answered we work on it no ETA as you can see on this answer crowd openid connect

The old OpenID interface is not a option for me for now I’ve search on startpage and found the repo crowd-ldap-server, this is a way to go ;-).

This is a read-only solution.

I cloned this repo and created a .gitlab-ci.yml to get a runnable jar file.

At this point I say thank gitlab for your excellent framework.

need to be include like gist short code

The rest is like follow the doc about Integrating Crowd with a Custom Application and the crowd-ldap-server wiki.

You can use the systemd to run the created jar file as daemon.

I strongly suggest to use a own user to run the app!
useradd -m crowd

You can use this file as a start for your own service file

cat /lib/systemd/system/crowd-ldap-server.service
Description=LDAP Server for Crowd



This is the file

cat /home/crowd/app/crowd-ldap-server/

cd /home/crowd/app/crowd-ldap-server


# Apache DS Settings

# SSL Debugging

# Run Server
java $FIXADS $DEBUG_SSL -cp etc -jar $JAR $*

You will need a file before you can use the LDAP Server.

UPDATE: For crowd 3.0 is the obsolete The file is no longer used

cat /home/crowd/app/crowd-ldap-server/etc/                        crowd-ldap-server
application.password                    <PASSWORD_FROM_CROWD_APPLICATON>
application.login.url                   https://<YOUR_DOMAIN>/crowd/console/

crowd.server.url                        https://<YOUR_DOMAIN>/crowd/services/

session.isauthenticated                 session.isauthenticated
session.tokenkey                        session.tokenkey
session.validationinterval              2
session.lastvalidation                  session.lastvalidation

Now execute the file and see if you are able to connect to crowd.

Check via a simple curl command that you get all the users from crowd.

curl -v -u "dn=YOUR_CROWD_LOGIN,ou=users,dc=crowd" \

Start the crowd-ldap-server daemon.
The logs are in the syslog channel.

journalctl -fl -u crowd-ldap-server

You can contact me for any further questions and orders