Connector configuration
To configure an API connector you will:
Create an application user and credentials in the identity provider.
Grant read-only access to the administration APIs.
Configure the connector directory in the KSSO and the Atlassian application.
Guides for different cloud directories:
Troubleshooting
In some extreme cases the size of the response from the user APIs can exceed default timeout of Data Center products Crowd http client, if a you are experiencing errors like this in you logs during sync:
Exception occured when performing full synchronization
com.atlassian.crowd.exception.OperationFailedException: javax.xml.bind.UnmarshalException
- with linked exception:
[java.net.SocketTimeoutException: Read timed out]
at com.atlassian.crowd.integration.rest.service.RestExecutor$MethodExecutor.andReceive(RestExecutor.java:381)
at com.atlassian.crowd.integration.rest.service.RestCrowdClient.searchUsers(RestCrowdClient.java:514)
at com.atlassian.crowd.directory.RemoteCrowdDirectory.searchUsers(RemoteCrowdDirectory.java:309)
at com.atlassian.crowd.directory.ldap.cache.RemoteDirectoryCacheRefresher.findAllRemoteUsers(RemoteDirectoryCacheRefresher.java:53)You may try to override the default timeout for crowd socket read.
Value 1800000 is ms and is equivalent to 30 minutes: 30 * 60 * 1000
There are two options:
Add startup property, for example in startup.sh (linux/unix/mac):
-Dcrowd.property.socket.timeout=1800000Or use system environment variable by adding the startup property
-Datlassian.use.environment.variables=true
And then set the environment variable to set the timeout
export CROWD_PROPERTY_SOCKET_TIMEOUT=1800000