Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Next challenges

Recent achievements

  • Global
  • Personal

Recognition

  • Give kudos
  • Received
  • Given

Leaderboard

  • Global

Trophy case

Kudos (beta program)

Kudos logo

You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.

View group

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Jira Logon - SSO Kick Off

At the moment when my user base go to my Jira URL they have to select the login button top right to kick off my SAML 2.0 ... But what i really would like is for the users to go to the URL and SSO kicks off automatically ... I know you can set it as Primary Authentication but then that impacts local admin login ...

So is there a way to "protect" the login path to kick off SSO automatically ?

2 answers

1 accepted

Since this is for Server - everything depends on what app you are using to do SAML SSO

Some of the apps have the feature you are after and some don't, and they can be implemented differently.

Our EasySSO for Jira for example allows a) SAML everywhere but the login/logout pages i.e. if you click logout or navigate directly to the login page - you can login with the local login b) forced SAML everywhere including login/logout, but support for a special parameter to stop it c) forced SAML everywhere, parameter disabled, but ability to disable SAML if needed via special protected "management" endpoint.

Also if you integrate EasySSO with the SecureLogin 2FA app from Syracom you can apply 2FA only to the local logins, leaving those coming via SAML alone (i.e. the assumption is that the IdP has already done 2FA if required).

i still can not logon

Hi Ninja,

it sounds a bit like you use the original Data-Center in SAML - then this article should help you to have a good workaround for your Admins: https://confluence.atlassian.com/jirakb/bypass-saml-authentication-for-jira-data-center-869009810.html

Alternatively should you use our App: https://marketplace.atlassian.com/apps/1212130/saml-single-sign-on-sso-jira-saml-sso?hosting=datacenter&tab=overview

Then here is an article how to achieve the same - with our plugin. I.e. giving admins a special URL to login: https://wiki.resolution.de/doc/saml-sso/latest/jira/knowledgebase-articles/technical/cannot-access-jira-confluence-bitbucket-bamboo-fisheye-crucible-anymore-bypass-sso

If the Bypass URL is not the Solution you like, then our plugin gives you many options to do "IdP Selection", which includes dealing with local users. Here you find a Video where I Demo the different possibilities: https://youtu.be/DoNir7eN87o

Cheers,
Chris

Suggest an answer

Log in or Sign up to answer
TAGS

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you