Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Using Atlassian Guard with Dynamic Groups in Entra-ID

Carsten Severin _KUMAVISION AG_
Carsten Severin _KUMAVISION AG_
Atlassian Partner
December 16, 2025

Atlassian Guard is a central security tool for Atlassian Cloud environments. It provides features such as Single Sign-On (SSO), Two-Factor Authentication (2FA), data protection, and real-time threat detection to ensure security and compliance.

Implementing Atlassian Guard reduces the risks of unauthorized access and simplifies user management. In particular, Two-Factor Authentication (2FA) prevents repeated credential entries while enhancing security. Furthermore, integration with Entra-ID enables efficient role and group management.

Dynamic groups automatically update their memberships based on defined rules and attributes, reducing manual administration and optimizing resource allocation.

Who has already gained experience with how Atlassian Guard handles dynamic groups in Entra-ID? What recommendations or best practices have you derived so far?

Comment
Watch
Like # people like this
160 views

2 comments

Comment

Log in or Sign up to comment
Richard Scholtes
Richard Scholtes
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
December 16, 2025

We already had Okta in place as we started with Atlassian Cloud, so we already had Okta handling dynamic groups, SSO and 2FA before Atlassian Guard. While we still have AD and AAD in place and handle rights there, all that Atlassian sees and interacts with is Okta.

Like
Reply
OP
OP
December 16, 2025

AFAIK Atlassian doesn't care whether the group is dynamic or manual, uses it like any other group. We are using SCIM with Entra ID and most of our user provisioning groups are dynamic in Entra.
Only thing it doesn't like is nested groups, it can't get the members of the subgroup, so you have to assign the permissions and licenses in Atlassian to the first level (sub)groups.

Like
Reply

Recommended Learning For You

Level up your skills with Atlassian learning

Learning Path

Become an effective Jira admin

Jira Software

Manage global settings and shared configurations called schemes to achieve goals more quickly.

5.9h Advanced
Free

Streamline Jira administration with effective governance

Atlassian logo

Improve how you administer and maintain Jira and minimize clutter for users and administrators.

1.1h Advanced
Free

Learning Path

Become an effective Jira software project admin

Jira Software

Set up software projects and configure tools and agile boards to meet your team's needs.

8.9h Intermediate
Free
groups-icon
Jira Cloud Admins
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security