Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Join now to unlock these features and more

Easily test external user security: test policy now available

Aug 31, 2023

In June of 2023, we launched external user security which enables you to apply security controls to users who collaborate with your company but who you don’t manage in your Atlassian organization.

Learn about managed accounts

 

In response to your feedback, we added a test policy to external user security. It allows you to test the external user security settings before you roll out the policy to all your external users.

A test policy allows you to:

  • Create one test policy

  • Add up to 5 external users to the test policy

Learn how to setup a test policy

 

d3613bf8-81d1-4c03-a64b-5e62a10159d5.png Above is the new external user security screen with test policy and main policy

e85a4a3a-e757-49e4-b4fc-7129b310d2ab.png
Above is the test policy overview page where you can add/remove test external users

 

We are rolling out the test policy in late August and September of 2023 so you can expect to see the external user test policy in Atlassian Administration (admin.atlassian.com) then.

The next updates to external user security include:

  • editing the verification frequency 

  • resetting sessions 

  • enforcing single sign-on

 

You can track these and future updates on Atlassian’s Cloud roadmap.

 

0c081b1b-3d03-4558-a093-5e8417587249.png

You can find in-product feedback prompts at the bottom of the screen

If you previously used external user security, thank you for your feedback. We encourage you to submit feedback to the portal or to any of your Atlassian support contacts. And if you’re new to external user security, we hope you find it valuable to securely collaborate with your external teammates.

Learn more about external user security

Comment
Watch
Like # people like this
576 views

7 comments

Tomislav Tobijas
Tomislav Tobijas
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
Sep 03, 2023

Hi @David Olive 

Is this feature rolled out gradually or should it already be available at all sites? I'm checking this at one of our customer's sites and I cannot see this option to add a test policy.

Cheers,
Tom

Like
David Olive
David Olive
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
Sep 05, 2023

Hi @Tomislav Tobijas we are gradually rolling out this feature. Not all orgs have it yet but should soon in the next couple weeks!


Like Tomislav Tobijas likes this
Craig Castle-Mead
Craig Castle-Mead
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
Sep 05, 2023

Hi @David Olive 

In terms of what products/instances would be covered by an external policy set against an organisation - is it:

  1. Any products that are  managed/owned by the Access org?
  2. Any products that are owned by a managed user within an org?

I am assuming that it’s the former, but until Atlassian provide a way for companies to prevent users (who we pay to manage) from setting up new Cloud environments that aren’t associated with the Access Org, that means we still cannot manage external access to company content.

And yes, there’s a hyped feature that lets an access org stop users signing up for Cloud products without first being approved by the Org admins, however, this can only be enabled for Orgs who have an Enterprise version of each product you want to gate (yet we have a huge DC instance which we cannot yet move to Cloud as it’s too large and complex).

So we are still in the position of:

 - not being able to stop our users from setting up additional Cloud instances

 - when the above does happen, not being able to enforce security policies on external users 

Both of these points are significant hindrances and mean we’re constantly diverting time and energy from proactively consolidating/simplifying our DC environment to get it to a state that means it’s more aligned with Cloud.

 

CCM

Like
David Olive
David Olive
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
Sep 06, 2023

Hi @Craig Castle-Mead 

Yes, External User Security policies only apply to products that are managed/owned by the Access org.

For the issue of managed users creating other instances without permission outside of the method you mentioned there is also the discovered products feature which lets you set up alerts when managed users create new instances outside your org so you can contact them.

We are always looking for ways to improve these features! You can reach out to me at dolive@atlassian.com if you would like to talk more about these features and your organizations pain-points.

Like
María José Vázquez Poza
María José Vázquez Poza Oct 05, 2023

Good morning.

When I type the email of an external user in the test policy it always tells me "User not found", however said user exists in my directory and has been assigned a client role as well as a project to connect to.

What more characteristics should I add to said user so that the testing policy recognizes it as such? In my case we are using Atlassian Acess.

Thank you

Like
David Olive
David Olive
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
Oct 05, 2023 • edited

Hi @María José Vázquez Poza ,

Thanks for reaching out, would be happy to help you with this.

If possible could you send me some more info regarding the user, like what product they have access to and some screenshots.

You can reach me at dolive@atlassian.com

Happy to Help!

All the best,

-David

Like
María José Vázquez Poza
María José Vázquez Poza Oct 11, 2023

Don't worry. I have assigned the role jira-user... and it has already let me include that user in the external user policy. Thank you.

Like

Comment

Log in or Sign up to comment
David Olive

David Olive

Atlassian Team
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.

About this author

Associate Product Manager

Atlassian

7 total posts

View profile
Identity Manager
Atlassian Access
TAGS
AUG Leaders

Atlassian Community Events

See all events