Confluence SiteMinder Authenticator

Based on the work by Ricardo Sueiras in the original SiteMinder Seraph authenticator.


This version of the SiteMinder authenticator requires:

  • Confluence 3.5.11 or later
  • SiteMinder to pass the username through to Confluence via an HTTP header like "remote_user"
  • an LDAP directory configured in Confluence, either normal LDAP or internal with LDAP authentication, with the same users as those authenticated by SiteMinder.

Standard Installation

The following standard installation instructions apply to Confluence 3.5.11 and later:

  1. Download confluence-siteminder-authenticator-1.0.jar.
  2. Shut down Confluence.
  3. Copy the JAR file into confluence/WEB-INF/lib/ in your Confluence installation, replacing any earlier version.
  4. Edit the seraph-config.xml file, found in confluence/WEB-INF/classes/ in your Confluence instance to set the <authenticator> value as follows:

    <authenticator class="com.atlassian.confluence.authenticator.siteminder.SiteMinderAuthenticator"/>

    Be sure to remove or comment out the existing <authenticator> tag. 4. Restart your Confluence instance.

Users will subsequently be authenticated by use of the "remote_user" header passed by SiteMinder.


If your SiteMinder header name is different to "remote_user", set this as an <init-param> inside the <authenticator> tag in seraph-config.xml as shown below.

<authenticator class="com.atlassian.confluence.authenticator.siteminder.SiteMinderAuthenticator">