Does Atlassian Access for Cloud allow you to add Whilelisted IPs like Bitbucket Premium does? I'm trying to allow access to our Jira products to only folks in the office.
Hey @David Loszewski !
If you're not following the link that Dave posted earlier, https://jira.atlassian.com/browse/CLOUD-2636, I wanted to give you an update. We've recently launched a beta program for IP allowlisting that's available for Confluence, Jira Software, and Jira Service Desk Cloud Premium customers and evaluators. If you're still interested, you can learn more about the feature and how to enable it by visiting our documentation for IP allowlisting here.
Please reach out if you have questions!
No, Atlassian Access doesn't include any IP-based access restrictions today; however, we are listening carefully and evaluating how we could support this in the future. Follow https://jira.atlassian.com/browse/CLOUD-2636 to receive updates.
Most customers I've spoken with implement this through their SSO provider. Most SSO providers allow you to restrict authentication based on IP address on a per-app basis. So if you have an Atlassian Access subscription and set up SAML SSO, your users will be redirected to your SSO provider to log in when they go to Jira Cloud. On the SSO provider side, you can restrict them from authenticating if they are not on the correct network, which will prevent logins to Jira Cloud outside of your network. It's not quite the same as a blanket IP whitelisting capability, but it achieves much of the same effect.
This sounds like a really cool feature! It might help me with something I'm trying to do. I deploy a cloud based product to my customers. I use Auth0 for them to login to my web app. When they login, they are redirected to their own security login. Once authenticated there, because I trust them, I then allow them into my app. I want that same login to allow them to connect to a specific confluence space within my Jira instance. I do not want to maintain a list of their users. I simply want to create a single group or user within confluence and connect it to their SSO. If they can connect to my app, I will allow them to connect to the right confluence space.
Is this possible?