Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Join now to unlock these features and more

Azure SSO Group management

Dominik Wittassek
Dominik Wittassek Nov 09, 2017

Good morning!

We tried the IdM so far with the Azure Integration.

Works so far, but a few points to complain...

1. When activating SAML SSO, its not possible to decide wether to log on with SSO or Atlassian account. For users that only have a mail adress in our organisation but  not an Azure acoount, it's not possible to log on any more.

So it would be great, if there were two logon URLs, one for SSO, one for "legacy"

 

2. When IdM was announced our hope was to use AD/Azure groups to grant access within our Atlassian products.
Our goal is to use a role-based concept in our AD.
But we still have to set the rights in JIRA/Confluence, so one more step to go.

 

3. Our company is leader in SAP Consulting, especially for SAP Identity Management.
HR creates a new emloyee -> the SAP system creates all accounts and permissions

We want tha a new employee with the role e.g. "Consultant IDM" is automatically created in the Atlassian Cloud and gets all rights for his role.

So is there a plan to anhance to functionality of Identity Manager to fullfil these requirements?

Comment
Watch
Like Moritz Kellermann likes this
1916 views

2 comments

Lars Olav Velle
Lars Olav Velle
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
Nov 10, 2017

The Identity Manager is still in its early age. There is an option to provide feedback in the administration sidebar.

I am sure Atlassian will like to hear your opinion and thoughts.

 

To enable a "back-door" for legacy is contradicting "Enforced two-step verification and Password policy" which is two strong reasons to use identity Manager.

-Lars

Like
Reply
Brian R
Brian R Aug 02, 2018

Has there been update since November that would allow for controlling Jira users based on AD Groups? It would be preferable to control based on AD groups, rather than having to manually add users then configure their rights.

Like
Dave Meyer
Dave Meyer
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
Aug 03, 2018

Hi @Brian R,

Stay tuned. We expect to have an update to share in the next month or two.

Regards,

Dave

Like
Brian R
Brian R Aug 14, 2018

@Dave Meyer Do you know where this update will be shared so that I can make sure I hear about it? I am currently following these tickets if that is relevant. 

Thank you,

Brian

Like
Dave Meyer
Dave Meyer
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
Aug 14, 2018

Hi @Brian R,

We will provide updates on ID-6305 and ACCESS-33 when this feature is ready.

Cheers,

Dave

Like lauren likes this
Reply

Comment

Log in or Sign up to comment
Identity Manager
Atlassian Access
TAGS
AUG Leaders

Atlassian Community Events

See all events