2FA Atlassian Access External Users

Mike Bell March 4, 2024

Within Atlassian Access I have all of my users setup via OKTA. However there are some "external" users that are not managed via OKTA. 

In Security -> External Users -> External User Policy the "Two-factor verification" setting has no options to set. 

How do I setup 2FA for external user accounts?

Thanks,

 

Mike

1 answer

1 accepted

0 votes
Answer accepted
Marc Koppelaar
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
March 4, 2024

Hi @Mike Bell 

You can just enable this. The users will need an authentication app on their mobile.

The accounts are still Atlassian accounts.

See also; manage-two-step-verification-for-your-atlassian-account 

Mike Bell March 4, 2024

Hi @Marc Koppelaar 

Correct me if I'm wrong, but I believe that you are referring to an authentication policy where I can enable and disable 2FA. What I am referring to is an "External User Policy" under Security -> External Users. There does not seem to be any option for 2FA settings. The external users are not managed accounts. If there is a way that I could use an authentication policy instead, it would be great, but I don't think that I can.

EUP.png

Thanks,

 

Mike

Like Marc Koppelaar likes this
Marc Koppelaar
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
March 5, 2024

Hi @Mike Bell 

No there is no option for 2FA based on external users in that specific policy.

But if the users are in your org (they have an account), you can also create a specific authentication policy and add only those users, then you can enable 2FA.

 

Mike Bell March 6, 2024

Hi @Marc Koppelaar 

Thank you for your help with this question. I am going to call this a big fat fail for Atlassian. How could putting 2FA on less secure accounts (accounts that I have no real management over) be an afterthought or not an option at all.

90% of my accounts are managed by OKTA (safe and secure), but the other accounts that I cannot control are not able to be properly secured.... Wow!

Again, thanks for your help. I appreciate it.

Mike

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
CLOUD
PRODUCT PLAN
STANDARD
PERMISSIONS LEVEL
Site Admin
TAGS
AUG Leaders

Atlassian Community Events