Collaborate more securely with External User Security: GA release now live

Hey @Bhavya Nag 

Thanks for the spreading the news. I have some questions regarding some of the features with external users.

In regards to the exporting of external users, are you planning on providing additional information like what sites & products they may have access to? Whether they are part of any groups? We do quarterly audits and I think it would be great to understand if access has changed for users between audits.

Another thing I wanted to ask was also whether any of the external user management will be available through APIs?

Hi @Dan Tombs , thanks for sharing your feedback! We will keep it in mind for future enhancements to the external user security feature. 

With regard to APIs for external user management, were you referring to configuring external user security settings via APIs or something else?

If you'd be interested in discussing your requirements with regard to external user administration in more detail, please email me at bnag@atlassian.com.

Hello,

Thanks for sharing this new feature with us. 

This system doesn't seem to be working quite right.

Question: Who are these external users?
Answer: Every user who is not registered in my directory, it means an external/guest user for me.

I made a list. There are 750 people in my company who are not registered in the directory (They all have a licence), but your new system shows that there are 246 people.

Where did the remaining 504 people go? Why are these people not registered as a guest/external?

Also, I still cannot apply "Authentication policy" for these people.

Thank you.

Hi @Y. Oezl , thanks for reaching out. 

External users are those that collaborate on your Atlassian Cloud products but whose accounts are not managed under your Atlassian organization. You can find more details with examples in our support documentation.

The number that you see on the "External users" screen specifies the number of external users that have access to at least one of your organization's Atlassian products. So it's likely that the reason for the difference you're seeing is that some external users in your directory do not have access to any products. 

With regard to your other question: if you're referring to the Authentication Policies functionality, that is applicable only to your managed accounts. The external user security settings described in this article are applicable to external users when you turn these settings on. 

If you have additional questions, please email me at bnag@atlassian.com.

Hi @Bhavya Nag 

As we know, there are two types of directories: one is local directory and the other is identity provider directory. Both of them are for managed accounts. 

As for the context of external users or unmanaged users, what's the directory of external users then?

It seems external users are unmanaged users. Are the two concepts the same or what's their difference if not?

Thanks,

YY哥

Hi @YY哥 Yang ,

External users are those that are not managed under your Atlassian organization but who collaborate on your Atlassian Cloud products. These may be unmanaged users or users that are managed by a different Atlassian organization. See our documentation for more detail.

Thanks,

Bhavya

@Bhavya Nag This is a good step, but as you probably know, 2FA via email is not considered very safe. What are your plans of including other options, like an authenticator app (TOTP) like MS Authenticator, Google Authenticator, ...?