Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,368,541
Community Members
 
Community Events
168
Community Groups

With SSO enabled, how can users log in to Jira if the IdP becomes unavailable?

Trying to elaborate for this (very remote) scenario:

Our Jira organization has SSO enabled. For some reason, the IdP becomes unavailable and users need to login. Is there a way to bypass SSO authentication? Or are we condemned to wait until the issue is solved? 

This is important to identify so that our current DRP/BCP plans include accurate guidelines on what to do/expect.

1 answer

Hi Arturo,

SSO with Atlassian Cloud is enabled for users on your verified domain. I would suggest you add an org admin outside your verified domain.

If IDP becomes unavailable, this user can log in as org admin and disable SSO via authentication policies under Security --> Authentication policies.

Disabling SSO will allow users to login via their Atlassian Account username/password.

Suppose you can't add an org admin outside your domain. Create a new authentication policy with SSO disabled and add an org admin user to this policy. This user will be able to log in without SSO and will be able to disable SSO if IDP is unavailable.

@Jayant Suneja but what if you broke your SSO BEFORE adding the extra admin user???

 

AND, since you can't log in, you can't open a support ticket?  We have SSO enforced, so we are screwed at this point, unless Atlassian Support can help on their end.

Please help!

 

Brian 

Suggest an answer

Log in or Sign up to answer
TAGS

Atlassian Community Events