Is Access mandatory to connect with our on-prem active directory or user base. We are trying to control cost and therefore to determine whether Access is mandatory to move our Jira instance to the Cloud. There are no other products planned other than Jira Software for Cloud.

Community
Q&A
Atlassian Guard
Questions
Is Access mandatory

Provisioning groups from custom IdP

We use Atlassian Access with a custom IdP proxy running simplesamlphp, which proxies through to a federated login.

Since this is an IdP proxy, I don't think we can just sync the users and groups over, as a valid user has to authenticate against a federation.

But we do provide group information in the SAML assertions sent by our IdP.

What do I have to do to integrate that group information with Confluence? We provide a list of groups under the 'groups' attribute. Is it sufficient to match the names of these groups with Atlassian groups? Or do I need to modify the group attribute name in some way?

1 answer

1 accepted

1 vote

Answer accepted

Hi @Rohini Kumar,

From my understanding yes. Verifying your domain to gain control of all Atlassian accounts that have been created with your domain does not. However, if you are looking for the automatic sync of adding new users, and automatically disabling accounts that have been disabled in your Active Directory as well as the possibility of SSO authentication, you would require Atlassian Access to unlock those features.

I hope that helps!

-Jimmy

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

Suggest an answer

Was this helpful?

Thanks!

Atlassian Guard

DEPLOYMENT TYPE

CLOUD

Forums

Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Provisioning groups from custom IdP

1 answer

1 accepted

Suggest an answer

Was this helpful?

Thanks!

DEPLOYMENT TYPE

TAGS

Atlassian Community Events