Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Transition to our Atlassian instance to use Okta for authentication

Ryan Rhodes
Ryan Rhodes
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
January 2, 2025

Can we transition our Atlassian instance to use Okta for authentication while allowing external collaborators without Okta accounts to access it?

We plan to move our Atlassian instance to Okta for authentication to manage access for internal users. However, our organization collaborates with external users from other business units who do not have accounts in our Okta instance. We want to ensure these external users can still be added to our Atlassian platform without compromising security. I'm assuming that this is indeed possible because of the Guest user functionality in confluence, but I want confirmation on this.

What configurations or solutions would you recommend supporting a mixed user base while maintaining secure access management?

Answer
Watch
Like Kristian Klima likes this
160 views

2 answers

0 votes
Shari Barchus
Shari Barchus
Contributor
January 7, 2025

Hi Ryan and Kristian,

Yes it is possible, BUT, in order to fully utilize Okta for single sign-on (SSO) on your Atlassian Cloud site, you will need to purchase/subscribe to Atlassian Guard - as it enables the necessary integrations with Okta for user provisioning and security features like SAML authentication; essentially, Guard acts as the bridge between your Okta identity provider and your Atlassian Cloud products. Here is link to an overview page on using the 2 products together. Here is a link to the article that describes how to configure user provisioning with Okta.  This would be a great place to start, as you can see all of the steps necessary, before committing to the product.

During the install/configuration of Atlassian Guard, there is a step in which you can configure what are called Authentication Policies.  This is a great page, as it gives examples of different types of users (like the external, non-Okta users, you mentioned).  

If you have a network admin in your organization, the above articles would be recommended for them, to see if it would work for your team. Please let me know if you have any additional questions.

 

Reply
0 votes
Kristian Klima
Kristian Klima
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
Become a leader
January 2, 2025

Hi @Ryan Rhodes and welcome to the Community.

We're using Okta and have external users (proper users, not 'just' guests) who do not have Okta 'accounts'.

As to how this is set up, I can't tell, that's literally not my department, but that mixed approach is possible.

Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events