Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Deleted user
Level
0 / 0 points
Next:
badges earned

Your Points Tracker
Challenges
Leaderboard
  • Global
  • Feed

Badge for your thoughts?

You're enrolled in our new beta rewards program. Join our group to get the inside scoop and share your feedback.

Join group
Recognition
Give the gift of kudos
You have 0 kudos available to give
Who do you want to recognize?
Why do you want to recognize them?
Kudos
Great job appreciating your peers!
Check back soon to give more kudos.

Past Kudos Given
No kudos given
You haven't given any kudos yet. Share the love above and you'll see it here.

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Jira SAML Sign-On Failed

JIRA SAML is failing with no changes by any admins to Azure AD. No one can get in to administer since SAML is failing; error is just "please contact your administrator".

How can admins get past this to troubleshoot?

All necessary fields in the single sign-on have been filled and not changed.

image.png

2 answers

1 accepted

1 vote
Answer accepted

Hi @Adam Muzyka ,

 

It seems that the signing certificate (X.509 certificate) has been changed on the Azure AD and because of that SSO is not working as JIRA is unable to validate the signature in the SAML Response.

It looks like you are using the third-party SAML app from miniOrange. If yes, you can use the emergency URL to access the default JIRA login page and update the certificate from the plugin configuration.

 

Also, it would be better if you can raise a support ticket to the vendor for faster resolution.

Again, if you are using the miniOrange, you can raise a ticket from the link given below. They will help you out to get Admin access and also help you configure the plugin to handle the certificate rollover event of the Azure AD so that you won't face this issue in the future.

miniOrange Support

https://miniorange.atlassian.net/servicedesk/customer/portal/2

 

Thanks,

Lokesh

Many thanks for the support, greatly appreciated.

 

Currently taking action suggested; this gave good direction on where to start down the rabbit hole.

 

:)

Hi Adam,

it looks like you are using our plugin (and not the one from miniOrange, unless their error screen looks like ours).

If it's our plugin, then here you find information on how to access the instance by either using the special ?nosso URL

https://wiki.resolution.de/doc/saml-sso/latest/all/knowledgebase-articles/technical/cannot-access-jira-confluence-bitbucket-bamboo-fisheye-crucible-anymore-bypass-sso

Or if you did disable that in the Config, then here are some instructions on how to start wiht our plugin disabled:

https://wiki.resolution.de/doc/saml-sso/latest/all/knowledgebase-articles/technical/application-startup-issue-disable-sso-plugin

You can reach our support via https://resolution.de/go/support - that's quicker than the public forum, as in the Forum it takes a couple of hours until we get pinged for search results.

Cheers,
Christian

P.S. Full disclosure, I work for resolution, a marketplace vendor.

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Confluence

⚡️NEW Group for Confluence Cloud Admins

Calling all Confluence Cloud Admins!  We created a new Community Group to support your unique needs as Confluence admins. This is a group where you can ask questions, access resou...

113 views 2 9
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you