Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Service Management Customer Portal SAML SSO with Azure AD B2C as Identity Provider

Christopher Villaran
Christopher Villaran November 1, 2021

We are trying to implement SAML SSO so that our customers don't need to sign-in in the customer portal. I'm currently testing the setup of SAML in a free trial Jira Service Management I've created (https://yummyteh.atlassian.net) also with a free trial of Atlassian Access.

We've already enabled and setup the SAML configuration under Security tab in Atlassian Admin and also enforced SSO for 1 user in Authentication Policies. We've also created a custom policy in Azure AD B2C that uses SAML2 protocol. This is the link we're using for an Identity Provider initiated SAML sign-in (https://swapoolabsdev.b2clogin.com/swapoolabsdev.onmicrosoft.com/B2C_1A_BASIC_SIGNIN_SAML/generic/login?EntityId=https://SwapooLabsDEV.onmicrosoft.com/atlassian-saml-test&RelayState=https://yummyteh.atlassian.net/jira/servicedesk/projects/CS/queues/custom/1)

But when we're trying to sign-in a test account we're getting a 404 to this HTTP request (https://swapoolabsdev.b2clogin.com/swapoolabsdev.onmicrosoft.com/B2C_1A_Basic_SignIn_SAML/client/perftrace?tx=3be1fd6b-4ed4-42b9-b257-bd31fadfdcfc&p=null)

This is the documentation we're following (https://docs.microsoft.com/en-us/azure/active-directory-b2c/saml-service-provider?tabs=windows&pivots=b2c-custom-policy#next-steps). I hope someone can help us, thanks in advance.

Answer
Watch
Like Be the first to like this
1353 views

1 answer

1 vote
Angélica Luz
Angélica Luz
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
November 3, 2021

Hello @Christopher Villaran,

Welcome to the Atlassian Community!

When it comes to using SAML, currently, it’s not supported to use it on the customer portal.

SSO will only work for users with an Atlassian account, so in case you need customers to log in using SSO, they must have an Atlassian account (internal user without application access) and use the same URL as internal users to login (xxxxxxx.atlassian.net instead of xxxxxxx.atlassian.net/servicedesk/customer/portals).

and also enforced SSO for 1 user in Authentication Policies

Is it working normally for the internal user?

But when we're trying to sign-in a test account we're getting a 404 to this HTTP request 

Is the test account an internal user from the same domain that was verified?

Kind regards,
Angélica

View More Comments
Christopher Villaran
Christopher Villaran November 4, 2021

Hello Chopper, I mean @Angélica Luz ,

We do have a test account both on Azure side and Atlassian side, and this account is also from a verified domain.

Kind Regards,
Chris

Like
Angélica Luz
Angélica Luz
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
November 5, 2021

Thank you for the details, @Christopher Villaran.

I see that the email is being redirected to that page and it shows an error that points to Azure AD B2C and it seems to be a configuration problem on their side:

 Screen Shot 2021-11-05 at 14.38.06.png

I found this documentation that might help, but I would like to share that when setting up SAML with Azure, the documentation that contains the steps is the one below:

The documentation you are following is not from a native integration. The one above is one where Atlassian worked with Azure to have a specific template.

Please, take your time to go through that documentation and let us know if you have any other questions.

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira Service Desk
Jira Service Management
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
PREMIUM
TAGS
AUG Leaders

Atlassian Community Events

    See all events