I'm actually implementing this myself right now, and the short answer is mostly yes. Once an Atlassian Cloud account is managed and has single sign-on set up, that SSO will follow the account regardless of what Atlassian Cloud orgs, sites, or products the individual is granted access to.
The one portion I am less sure of is the authentication policies. The "External users" policy would govern any account not claimed/managed by a particular org. I'm not sure how/if changing the authorization method would affect my SSO users on someone else's site. I do know that API token access is set per org, so for instance users are blocked from creating API tokens for the SSO org but I know they can and have created API tokens on other orgs.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.