Community
Q&A
Jira
Questions
Set "User Object Filter" to OU, not CN

Atlassian Access SAML with NetIQ

My organization is planning to get Atlassian Access, and we were exploring to integrate using SAML with our existing Identity Manager from Microfocus NetIQ.

1. In the documentation https://confluence.atlassian.com/cloud/saml-single-sign-on-943953302.html -- NetIQ was not listed as an identity provider.

2. To configure in NetIQ i would require Metadata of Atlassian

Question:

1. Would Atlassian Access in work with NetIQ?

2. Where can i acquired the necessary Metadata and x509 cert from atlassian?

2 answers

0 votes

Hi Gonchik,

well good question, if we set the User Object Filter to CN ( a AD-group) all other AD-Groups must be member of the main AD-group. You always have to keep this in mind, when you add a new AD-group.

CN=Jira-All,OU=RG_Jira,OU=Groups,DC=net,DC=local

Jira-All

Jira-Write (member of Jira-All)

Jira-Read (member of Jira-All)

In my opinion this is unnecessary when we read all ad-groups and the containing users of one OU.

OU=RG_Jira,OU=Groups,DC=net,DC=local

Jira-Write

Jira-Read

So you don't have to add the ad-group to the main-ad-group.

BR
Stefan

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

0 votes

Hi Stefan,

Could you describe your use case?

If you want to set filter on OU level, better way use on basedn.

https://confluence.atlassian.com/kb/how-to-write-ldap-search-filters-792496933.html

BR,

Gonchik Tsymzhitov

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Forums

Q&A

Community resources

Support

Top groups

Community resources

Support

Learn

Community resources

Support

Events

Community resources

Support

Atlassian Access SAML with NetIQ

2 answers

Suggest an answer

Was this helpful?

Thanks!

TAGS

Community showcase

Atlassian Community Events