Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Jira Sign-In Account Options For External Users?

Jax
Jax
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 26, 2018

 

We currently use Active Directory accounts for all our internal employees and it works fine.

For external users, we have to create new active directory accounts and buy Microsoft AD CALs and manage these external user's account password resets.

The external users belong to too many external domains for us to set up LDAP for all those domains, so we want another option that doesn't require us to manage passwords for external users.

What other options are available that will allow the external users manage passwords on their own?

For instance, can we set up Jira access for Azure AD Guest users? 

Any other options that are secure, yet convenient to the users and less management for us?

Answer
Watch
Like Be the first to like this
823 views

1 answer

0 votes
Brant Schroeder
Brant Schroeder
Community Champion
July 26, 2018

Jira allows you to use multiple user directories and have a priority based on their order.  We use LDAP for our internal user and Jira's internal directory for external users. This has worked well for us because we can help troubleshoot accounts if necessary but the user has the option to manage their account and profile through Jira's built in interface.  You could use a different directory external to Jira that supports LDAP or look at implementing something like Crowd.  

View More Comments
Jax
Jax
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 26, 2018

We don't want to try to connect to 100 different external LDAP directories for all these users.  All those domain's IT departments are not going to agree to participate in allowing access to their LDAP servers anyway.

That's why we need a solution that doesn't require the other domains to open up any access to their network, but we don't want users to need to contact us for password resets.

The most we would want to do is grant Azure AD Guest accounts where the user's manage and reset their own passwords or else some other solution where we don't need to create any accounts for them at all and they use their own existing external accounts and passwords from their own employers.

Like
Brant Schroeder
Brant Schroeder
Community Champion
July 26, 2018

The Jira internal directory will allow for all of your requirements as will using LDAP to connect to Azure AD. 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security