We are planning to integrate our Confluence Cloud site with our Okta SSO. We want to make sure that existing users that are logging in with the Native Confluence authentication are properly mapped to their new Okta accounts. We also do not want ALL users who access Confluence to require an Okta login. Only a certain group of users.
1. When you turn on Okta SSO, all users which get imported will require an Okta sign-in. Once you create the SSO, all your directory with synced used will require Okta to sign in, but they will not be kicked out of their native authentication yet. So everybody will remain logged in and the SSO transition will be seamless.
2. Yes, they can be mapped. Please bear in mind that anybody with a main account and an alias in Confluence will need to manually be mapped. (Example: email@example.com is their primary Okta email but their Confluence account is mapped to firstname.lastname@example.org. Then they need to be manually mapped in Okta to their email@example.com, otherwise the SSO will instantly create a second duplicated account and trust me, there will be a lot of confusion around it!)
Anybody who you manually invite in Confluence via the Admin panel can still log in with email/password, since there is no way to enforce SSO in Atlassian.
I haven't had any problem inviting external contractors to our domain.
Hi, Confluence collaborators! As part of #Confluence-Collaboratory month, we’ve created a very special Mythsbusters segment, where we're dive into an interesting myth and uncover the truth behind i...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events