Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
Community Members
Community Events
Community Groups

List users with two-step verification status


Is it possible to list all active users and whether they have enabled two-step verification?

Thanks, Ian

1 answer

Hello Ian, 


List of all active users

I guess you mean to list all Active "managed" accounts. If so, please find below the steps you can follow to do so:

  • Access the page
  • Under Organization, identify the name of your organization and then click on xxx managed accounts (where xxx is the number of your managed accounts)

  • In the windows you get, in the central panel (under Managed accounts), click on All accounts to open a drop down menu, and choose Active accounts


  • You can finally export the set of accounts you get if you want, by clicking on Export accounts on the same page. 



Users with Two-step verification enabled


For this point, in the official documentation talking about Enforced two-steps verifications, mainly in the part named  See accounts without two step-authentification enabled, this is what is written: 


You can see a list of all accounts from your verified domains that don't yet have two-step verification enabled:


    From your organization at, select Directory and then Managed accounts.


    While we make updates to the admin experience, you may not need to click Directory to get to Managed accounts.

  2. Click Show users without two-step verification.

This displays all the Atlassian accounts that are managed in your organization that don't have two-step verification enabled. You can use it to see which people will be affected if you enforce two-step verification, as well as to see those who are yet to enable two-step verification after you've enforced it.


I hope this helps you. Otherwise, maybe another community member will be able to add more information and precisions regarding this. 


Thank you


I don't think OP meant list of Managed accounts with 2FA enabled, but all accounts on his instance that have it. Managed and Unmanaged.

That's always confused me, why let us enforce 2FA on managed account but not unmanaged, when the unmanaged accounts appear to be the higher security risk 

Like # people like this

I agree 100% @Jay McCarogher . It is crazy that they only let you set the authentication rules for the folks in your organization. Those are presumably the safest since they are at least on your team, but folks outside your organization with access to your project are free to be as risky as they want? Wow!

This has prompted yet another, should we stick with Atlassian conversation, amongst our upper management.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Atlassian Access

Atlassian Access Demo Q&A Recap

Hi Community! Thank you to all who joined our ongoing monthly Atlassian Access demo! We have an engaging group of attendees who asked many great questions. I’ll share a recap of frequently ask...

1,155 views 4 4
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you