Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Jira server SSO

Hi,

Can we enable SSO for third-party users (who are not in our AD)?

Are there any solutions or plugins for this use case?

 

TIA!

 

2 answers

Hi @Ash ,

This is Lokesh here from miniOrange one of the top SSO vendors in the Atlassian Marketplace.

We have an SSO plugin for JIRA and JIRA Service Management that can fulfill your requirements. This module support user provisioning so even if the user is not present in JIRA (or connected AD) they will be created on the fly in the internal directory (or you can specify the directory as well).

In case if their third-party users have their own IDP, you can connect it along with your organization's IDP for SSO.

 I suggest you drop an email at lokesh@xecurify.com or raise a support request on the customer portal so that can discuss the requirement in zoom and help with this requirement.

Thanks,

Lokesh

0 votes
Brant Schroeder Community Leader Jan 10, 2022

@Ash 

There are a number of SSO apps in the marketplace.  IF my memory serves me well I believe many allow you to connect multiple IdPs. This means you would add third-party users SSO.  The issue I think you will run into is getting the third-party security team to release the necessary information to connect their IdP to your application.  

Thank you @Brant Schroeder

I don't think they share the necessary information and we work with several vendors.

Looking for a best practice in the scenario.

Creating third-party users in our AD and enabling SSO or any other way we can implement?

 

Thanks,
Ash

Brant Schroeder Community Leader Jan 10, 2022

Have you considered Service Management?  It might not be the same access you are looking for but it allows customers to create their own accounts.

Hi @Ash 

If you have a variety of 3rd party users, then running your own IDP is the best bet. All current Atlassian DC products now support multi-IDP for SAML, so you can natively connect to your AD + other IDPs for SAML

Depending on how many other parties are involved, and how many users there are from each party will impact the level of effort involved.

I'd see an ideal solution as something like:

I do not work for Okta, it's just the solution I'm personally familiar with.

CCM

Suggest an answer

Log in or Sign up to answer
TAGS

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you