Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

How do I change an account's e-mail that is connected to SAML SSO?

Jake Budin
Jake Budin May 12, 2021

Hi Atlassian Community happy Wednesday,

 

Our organization is looking to change the e-mail of an account belonging to another organization that has SAML SSO enabled. Our organization does not have SSO for Atlassian yet.

I cannot change their e-mail from User Administration, and the user cannot change their e-mail, they get the following message:

Log in with SAML enabled
Connected account
Your account is connected to a SAML account. Changing the email address here will disconnect your account from the SAML account.
Managed account
Your account uses single sign-on.
Contact your identity provider administrator to change your email address.

My goal is to change a user's email address so that they retain their historical ownership of Jira/Confluence content.

Questions: What is the best way to approach this, if the other organization disconnects access to the account, does it disconnect the SAML and leave the account in Atlassian intact as "Deactivated" or does it delete the Atlassian account as well?

Is there a way for the other organization in User Administration to disconnect a particular user from Atlassian SAML?

Thanks very much,

-Jake

Answer
Watch
Like Be the first to like this
1596 views

2 answers

1 accepted

0 votes
Answer accepted
Jake Budin
Jake Budin May 14, 2021

Atlassian support noted that, "this user would need to contact their Org admin, requesting them to either exclude their account from SSO, or update the email address"

Reply
0 votes
Prince Nyeche
Prince Nyeche
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
May 12, 2021

Hi @Jake Budin 

As an administrator, you can change the email address from your Org admin hub. Just ensure that the domain is claimed in the Org where you want to implement the change of email. What you cannot do is change the email address of a user who's domain you've not claimed. So the first step here is ensure that the domain you're administering is already claimed in your Org before you could proceed to the next step.

Likewise, disconnecting or invalidating a domain claim, allows for another Org to claim and verify that domain. Atlassian access does not deactivates or deletes an account as a result of disconnecting a domain from your Org or removing the SAML.

View More Comments
Jake Budin
Jake Budin May 13, 2021

Good day Prince,

 

The user is from another organization, the ability to change their e-mail address is greyed out from the Org admin hub. We cannot claim that domain because it is their domain.

The latter part of your comment is helpful, as you explain if a user is deprovisioned in SAML SSO, their Atlassian account is not deleted

Like
Prince Nyeche
Prince Nyeche
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
May 13, 2021

Unfortunately, you won't be able to do anything since you don't have ownership of that domain.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Identity Manager
Atlassian Access
TAGS
AUG Leaders

Atlassian Community Events

    See all events