How to handle 'public' network user access when migrating from Server to Cloud?

Thank you Charlie for the response, and the links! It looks like IP Allowlisting would pretty much give us what we have now, using our VPN to get to Jira/Confluence like we do now for external users. I was hoping to avoid the extra step of going through the VPN for licensed remote users though. 

How about this; what if we create an account in Jira, but not assign them a license for a product, allowing them access to the server as 'Guest', but unable to add/edit/delete content (except maybe comments!). That way I could use Access to sync Active Directory accounts, control licensed user access, allow 'public' access limited to AD without the VPN, and not destroy my budget!

I quickly tried setting up an testing account on our existing Jira Server, and that didn't work, but I'm not sure if I may have missed something.

Any thoughts on the above, and thanks again for your reply!  -- Mike

Hi Michael,

I understand what you're trying to achieve but I'm afraid it's not possible.

You can add the users to Atlassian Access with the option "Has access on site" and without Confluence license. But those users will not be able to login into Confluence. They really need a Confluence license to do so.

This is true except for Confluence spaces linked to a Jira Service Managment project. You can grant unlicensed users access to a Confluence space in read only mode (without the ability to add comments).

Charlie,

Thank you again for your quick response, and I truly appreciate your help!

Since I'll be new to Jira Service Management, I'll see if that can accomplish what I want. Otherwise it looks like IP Allowlisting will be the most likely path.

Ok! Good luck :-)