Gettign Error: blockedByReason=Blocked%20by%20SCIM&blockedBy

Setup SAML SSO login from IDP to Atlassian from teo domain directory from IDP.

But when login from the user giving error: https://id.atlassian.com/login/inactive?blockedByReason=Blocked%20by%20SCIM&blockedByType=orgAdmin

1 answer

0 votes

this error points to SCIM provisioning, not to SAML itself.

blockedByReason=Blocked by SCIM means the user is still being controlled by the IdP sync, so I would check the user there first:

- confirm the account is still active
- confirm the user is still assigned to the Atlassian app / provisioning scope
- then let SCIM sync again

I would also check the Atlassian Admin audit log to see whether the user was deactivated or removed by provisioning.

The key point is:
if the account is still SCIM-managed, the fix usually has to happen in the IdP, not in Jira.

If the user is no longer SCIM-managed, then you can handle it in Managed accounts in Atlassian Admin.

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

CLOUD

ENTERPRISE

Product Admin