Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Celebration

Earn badges and make progress

You're on your way to the next level! Join the Kudos program to earn points and save your progress.

Deleted user Avatar
Deleted user

Level 1: Seed

25 / 150 points

Next: Root

Avatar

1 badge earned

Collect

Participate in fun challenges

Challenges come and go, but your rewards stay with you. Do more to earn more!

Challenges
Coins

Gift kudos to your peers

What goes around comes around! Share the love by gifting kudos to your peers.

Recognition
Ribbon

Rise up in the ranks

Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!

Leaderboard

SSO implementation is too restrictive

Philip Colmer
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Feb 04, 2021

We are currently self-hosting Service Desk as part of a portfolio of services to staff and external customers. All of the services support SSO and we are using Auth0 to act as the IdP.

Everyone logs in with their own email address. We create accounts on Auth0 with those email addresses.

With the retirement of the Server range, we've been looking at migrating to Atlassian Cloud but there is one massive brick wall in our way: SSO only works for verified domains.

That simply isn't going to work for our setup because customers can register with any email address they like and we literally cannot verify all domains.

As a result, if we were to migrate to Atlassian Cloud, Service Desk (Service Management) would be the only service in our portfolio that didn't support SSO.

This seems to be down to how Atlassian Access has been built and, at one level, I think I understand it because it means that once I've added Atlassian Access and verified a domain and configured SSO, I can then log on to any Atlassian Cloud product that I have access to - even if it is owned by another Atlassian customer - and I will be logged in with SSO.

But, with the way things stand, I cannot see a solution to this other than moving to a competitive ticketing system. It isn't a decision I want to make, which is why I've started this discussion. I'm hoping that someone can suggest a solution that would allow us to use Atlassian Cloud and allow customers with any email address log in with SSO.

 

0 answers

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events