Table of Contents

maxLevel	2

General

Is Kantega SSO Enterprise affected by the log4j vulnerability CVE-2021-44228?

...

Can Kantega SSO be combined with other SSO solutions?

In general, combining multiple SSO solutions in one Atlassian product, like Jira or Confluence, is not a good idea. What could happen is that the different solutions struggle to take action when a user is not logged in and collide when doing this. In the worst case it could introduce security vulnerabilities in your system. Kantega SSO is best used alone as the SSO solution and should cover most needs. On the other hand, it should work to use mechanisms in Kantega SSO that are not directly related to SSO like Cloud user provisioning or User cleanup in combination with for example say Atlassian SSO.

What do I have to do to move my Kantega SSO installation from Server to Data Center?

...

Code Block
<atlassian_home_folder>/kerberos/disable_username_password_login.txt

If you do not have access to a local administrator account and/or are unable to delete “disable_username_password_login.txt”, we recommend following Atlassian’s guides for recovering the administrator account:

...

login.txt

If you do not have access to a local administrator account and/or are unable to delete “disable_username_password_login.txt”, we recommend following Atlassian’s guides for recovering the administrator account:

Is Kantega SSO Enterprise affected by the log4j vulnerability CVE-2021-44228?

We have looked into our dependencies, and found out that our runnable is not affected since the Atlassian runtime system a versions which is out of scope for the vulnerability. Look at Atlassian's FAQ for the incident here about on premises logging in general: https://confluence.atlassian.com/

...

...

...

...

...

...

44228-1103069406.html. You may read more about the incident for Atlassian systems in general in Atlassian’s FAQ: https://confluence.atlassian.com/