Are you in the loop? Keep up with the latest by making sure you're subscribed to Community Announcements. Just click Watch and select Articles.

×
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

Join now to unlock these features and more

Atlassian Access SSO + Guests

jorge.carvalho
jorge.carvalho Jul 21, 2022

Hi,

We're in the process of migrating from on-prem to Atlassian Cloud.

We setup SSO with AAD and that's all working fine for our verified domain.

From the documentation we could find so far, it looks like there is no way we can leverage AAD B2B guests, so we're left with the challenge of configuring password complexity, MFA and access reviews for the partners we work with.

Is there any way of achieving this using only Atlassian Access and without having to create a full account for these external partners in our verified domain?

Any documentation you can please direct us to?

Thanks!

Answer
Watch
Like Be the first to like this
573 views

3 answers

1 accepted

1 vote
Answer accepted
Ed Letifov _TechTime - New Zealand_
Ed Letifov _TechTime - New Zealand_
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
Jul 22, 2022

Hello, @jorge.carvalho 

Atlassian Access can only enforce security controls onto the accounts from the domains that you've claimed/verified i.e. "yours".

As such there is nothing you can do with external partners, unless you give them accounts in one of your verified domains.

A good practice is to make their domain distinct from your main one, but keep in mind the resulting email must be usable i.e. reachable – since Cloud will attempt to verify the account by emailing with a link.

View More Comments
jorge.carvalho
jorge.carvalho Jul 24, 2022

Thanks Ed.

Disappointing, but thanks for letting me know.

Cheers

Like
Reply
0 votes
Jeffrey Ambler
Jeffrey Ambler Sep 09, 2022

Thank you!

Reply
0 votes
Aditya_miniOrange
Aditya_miniOrange Jul 22, 2022

Hi @jorge.carvalho 
Welcome to the community.

As I understand you want to implement SSO for external customers/partners whose domain you do not own. Please correct me if I am wrong.

We may be able to offer an effective solution for your use case. Please reach out to us at atlassiasupport@xecurify.com and we can discuss the same in detail.

Thanks,

Aditya

View More Comments
Like
Reply

Suggest an answer

Log in or Sign up to answer
Identity Manager
Atlassian Access
TAGS
AUG Leaders

Atlassian Community Events

See all events