Always use the latest version of Crowd available at the time your version of Nexus was released. When upgrading to a newer Crowd server, carefully review the Crowd server release notes for REST API backwards compatibility issues.
Crowd support in Nexus 2.7 and greater will only work in Crowd versions (2.1+) that support the Crowd REST API. Older versions use a deprecated SOAP-based API and are less reliable and performant.
Crowd support is actively tested with the highest available version of Crowd at the time Nexus is released.
These instructions are a general guide to adding an application to Crowd. For current detailed instructions, visit the official Crowd documentation.
To connect Nexus to Atlassian’s Crowd, you will need to configure Nexus as an application in Crowd.
- Login to Crowd as a user with administrative rights.
- Click on the Applications tab.
Click Add Application to display the form shown in Figure 9.1, “Creating a Nexus Crowd Application”, and create a new application with the following values in the Details tab of the Add Application form:
- Application Type: Generic Application
- Name: nexus
- Description: Sonatype Nexus Professional
- Choose a password for this application. Nexus will use this password to authenticate with the Crowd server. Click on the Next button.
Clicking on Next will advance the form to the Connection tab shown in Figure 9.2, “Creating a Nexus Crowd Application Connection”. In this tab you need to supply the URL of your Nexus application instance and the remote IP address for Nexus. Figure 9.2, “Creating a Nexus Crowd Application Connection”, shows the Connection form configured for a local instance of Nexus. If you were configuring Crowd and Nexus in a production environment, you would supply the URL that users would use to load Nexus in a web browser and you would supply the IP address that Nexus will be connecting from. Once you have completed the Connection form, click on Next to advance to the Directories form shown in Figure 9.3, “Choosing Atlassian Crowd Application Directories”.
The Directories form allows you to select the user directory used for Nexus authentication. In this example, the default User Management directory will be used.
Clicking on the Next button in the Directories form advances to the Authorisation form shown in Figure 9.4, “Creating a Nexus Crowd Application Authorization”. If any of the directories selected in the previous form contain groups, each group is displayed on this form next to a checkbox. You can select Allow all users for a directory or you can select specific groups that are allowed to authenticate to Nexus via Crowd. This option would be used if you wanted to limit Nexus access to specific subgroups within a larger Crowd directory. If your entire organization is stored in a single Crowd directory, you may want to limit Nexus access to a group that contains only developers and administrators.