Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Confluence SSO user provisioning

Christoffer Krogslund
Christoffer Krogslund September 2, 2020

HI,

 

I have an Confluence server installation and have integration with Azure AD via Confluence SAML SSO by Microsoft - but I can't figure out the user provisioning. 

I have a AD group with me in it, but every time I log in I get "User is not available in Confluence. Please contact your Confluence admin"

How should I provision users from my corporate Azure AD?

 

Hope someone can help.

Answer
Watch
Like Be the first to like this
655 views

2 answers

1 accepted

1 vote
Answer accepted
Prakash Kumar
Prakash Kumar September 2, 2020

Welcome to the Atlassian community. This is Prakash here from miniOrange,

we have an automated user provisioning app which can solve your problem

You can take a look at our SAML SSO app & User Sync app.

SAML SSO: https://marketplace.atlassian.com/apps/1215542/confluence-sso-single-sign-on-saml-sso?hosting=server&tab=overview

User Sync app: https://marketplace.atlassian.com/apps/1222394/confluence-user-sync-group-sync?hosting=server&tab=overview

 

Please reach out to miniOrange at atlassiansupport@xecurify.com or using the customer portal and the team will help you out to configure the plugin as per your requirements.

 

Kind regards,
Prakash

Reply
1 vote
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 2, 2020

Hi Christoffer,

to my knowledge, the free Microsoft Plugin does not support any user provisioning at all. It only supports authentication (of existing users).

In order you to provision users you may have to use third-party plugins like ours, where you would have a choice between:

Users Sync & Groups Sync Confluence 

This is a plugin providing provisioning capabilities to many common IdPs including Azure AD. You could use this in conjunction with the Microsoft Plugin.

- SAML Single Sign On SAML SSO Confluence 

This plugin already includes all the Users Sync functionality from the above Plugin and also includes the capability to do SAML Authentication. You then no longer would need the Microsoft one.
It's the most used one in the Atlassian Ecosystem and has a variety of additional features compared to the Microsoft SAML Plugin.

Besides ours, there are some other plugins in the Marketplace - you should get a good overview here: https://marketplace.atlassian.com/search?query=saml

If you want to get an impression of the Configuration of our plugin - here is a link to our Step-by-Step Guide with Azure AD (including a Tutorial Video): https://wiki.resolution.de/doc/saml-sso/latest/jira/setup-guides-for-saml-sso/azure-ad/azure-ad-with-user-sync


Cheers,
    Chris

P.S. Full disclosure, I work for resolution, a marketplace vendor.

View More Comments
Christoffer Krogslund
Christoffer Krogslund September 2, 2020

In this solution would I need to sync the whole AD to confluence? I only need a small subset (1 AD group) to gain access to confluence.

 

Kind regards,

Christoffer

Like
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 2, 2020

No that is not necessary.

There is a setting called "Groups mandatory to sync" in the Advanced settings of the Azure AD connector, where you can limit which users are being sync'd. Then only users in that(those) group(s) will be synchronized.

More details here: https://wiki.resolution.de/doc/usersync/latest/knowledge-base/group-management-and-filtering-with-user-sync#id-.GroupManagementandFilteringwithUserSyncv1.1.x-MandatoryGroups

Cheers,
Chris

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events

    See all events