Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

User Provisioning and adding to a group with a SCIM-incompatible identity provider (Keycloak)


This issue is quite tricky, so I'll try to keep it short and to the point. 

The client's identity provider is Keycloak, which isn't compatible with SCIM. However, user approbation can be automated and SAML-SSO is ok, which is great.

I'm trying to find a way to automatically add the newly self-added-user to a group.

The only thing I can think of is "sending a custom SAML attribute to Atlassian Access containing the user's group from Keycloak", then "somehow retrieve said attribute and add user to the right group, maybe with some ScriptRunner?".

Trouble is, I'm not even sure it's possible, or if there could be a better way to do things.

From what I said: are you inspired with a solution ?

Thank you very much in advance for any kind of help,


0 answers

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Atlassian Access

See Atlassian Access in action - Live Demo

Did you know Atlassian Access offers more than SAML single sign-on for Atlassian cloud products, like Jira and Confluence? Whether you're just starting to plan for your organization or in the pr...

103 views 0 3
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you