Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

How to the the unique Entity ID values for Atlassian SP?

Hello everyone!

I am working to integrate SSO for our JIRA Cloud with ADFS. I understand this won't be supported by Atlassian but I can't even get the setup as I do not know where to get our unique Entity ID to complete the URLs for JIRA as the SP? I mean these:

SAML Assertion (SP Identifier):
https://auth.atlassian.com/saml/<unique Entity ID>

Login/logout redirect URL:
https://auth.atlassian.com/login/callback?connection=saml-<unique Entity ID>

 

Where the <unique Entity ID> should be dynamically created for our subscription. I raised a support case but so far the response I received is to contact our IdP to get these... given that we own and manage our IdP (ADFS), I already know the required endpoints. :)

The Azure SSO integration (at: here) suggests that the <unique Entity ID> might be generated at the moment when the SSO configuration is initiated in Atlassian Access but I would like to be certain, as the entire process will cause downtime for our production teams.

Anyone knows where/how I can get the <unique Entity ID> ? Thanks!

1 answer

1 accepted

1 vote
Answer accepted
Daniel Eads Atlassian Team Feb 25, 2019

Hey Ventsislav!

Despite not providing official support, we do have some extensive documentation you may have already seen at SAML single sign-on - Unsupported identity providers.

Going off the Microsoft document you linked, the missing piece is probably what's quoted in our documentation here:

After adding your identity provider details to the 'SAML single sign-on' page for your Atlassian organization, you'll see new fields and values appear. Copy those values over to your identity provider. 

 

So this is what the admin page looks like before you add the ADFS details in admin.atlassian.com:
image.png

 

After clicking the blue "Add SAML configuration" button and filling out the details, viola, the necessary fields are available. The SP Entity ID field is the one you'll want. Sounds like ADFS or Azure AD are trying to helpfully pre-fill the non-unique part of the URL. You can just use the copy button and blow out the entire field on the ADFS/Azure side.

image.png

 

Hope that helps, and happy authenticating!
Daniel

Hello Daniel,

Thanks, exactly what I needed! I though that the SP Entity ID was being generated upon signing for Atlassian Access rather than when initializing the SSO configuration. I'll have to plan this for the switch-over. :)

 

Kind regards,

Ventsislav

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Atlassian Access

We're launching improved navigation for admins

Hi Atlassian Community, My name is Avni Barman and I am a Product Manager on the Atlassian Access team! One of my top priorities is to help make the administrator's life easier through improved pro...

664 views 0 9
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you