I'm looking to enable SAML federation between Atlassian Cloud (Jira, Confluence, Bitbucket) and Azure AD. There is already a user base on our cloud tenant, made up of both employees and contractors.
When I enable SAML federation for my employees, I will specify our company domain. That's what will trigger Atlassian Cloud to redirect users with that domain to our SAML IdP.
I have a 2 part question:
- When we turn on SAML, I don't know what will happen to contractors who do not have an email address with my company's domain. Will they be locked out of our Atlassian Cloud instances, or will they be able to carry on accessing things the same as they did before?
- When it comes time to convert contractors to use SAML, can we just update the email addresses on their existing accounts? Will that allow them to login with the new credentials, but still be assigned to all their existing Jira tickets? (I'm trying to avoid having to reassign tickets from their old user accounts to a new account.)
Best regards
Chris Jackson
