Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Interests
See all
Community resources
Top groups
Explore all groups
Community resources

Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Get started Tell me more
Atlassian Community about banner
4,295,486
Community Members
 
Community Events
165
Community Groups

Implementing Atlassian Access, do I need an admin 'back door'?

Edited
John Hadaway
John Hadaway Jun 20, 2022

Hi, We have existing cloud Confluence and Jira products and intend to implement Atlassian Access, is there any risk that enabling Atlassian Access will block existing user access, specifically including the admin accounts.  In essence if my admin account fails authentication I'll be locked out and unable to resolve the user access issues.  I'm assuming that Atlassian Access is designed to avoid this scenario, but assumptions are bad things in our line of work.

We have a locally authenticated admin account on our Confluence server environment, is there an equivalent for cloud hosted (or no requirement for one).

Oh and hey, just to up the 'fun factor' we're going to enable Atlassian Access tomorrow (21/06/2022).  Why not eh, I mean... what could go wrong?

Aha, I've just realised that cloud admin is via admin.atlassian.com, rather than via our cloud site.  I'm thinking this neatly avoids the 'I'm an admin locked out of my own site' issue?  Do others agree?

Answer
Watch
Like Be the first to like this
38 views

1 answer

0 votes
Dave Meyer
Dave Meyer Atlassian Team Jun 22, 2022

@John Hadaway implementing SSO with Atlassian Access does not change what user accounts have permissions to access, but we do see customers misconfigure SSO and get locked out of their account.

The best way to avoid this is to use authentication policies. Set up a new authentication policy to test out your SSO configure with just one or a few users, then once you know it's working you can assign all your users to that authentication policy. You can also keep a "backdoor" authentication policy for an admin account just in case, this is a pretty common use case.

Reply

Suggest an answer

Log in or Sign up to answer
Identity Manager
Atlassian Access
TAGS
Community showcase
Sandy
Sandy
Published in Atlassian Access

Atlassian Access Demo Q&A Recap

Hi Community! Thank you to all who joined our ongoing monthly Atlassian Access demo! We have an engaging group of attendees who asked many great questions. I’ll share a recap of frequently ask...

1,120 views 3 4
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you