We use a variety of applications in our daily lives, and we all understand how important it is in the present era to have security and prevent our data from being exposed to hackers. In this article, we will go over the fundamentals of how to secure your apps with the help of SSO and 2FA and how they should be used with Atlassian applications. Let’s start understanding it step by step!
Single Sign-On (SSO)
SSO is an authentication process that allows a user to login into a variety of application using a single set of credentials i.e username and password, for example, if you are using different Atlassian applications such as Jira, Confluence, etc then for each application instead of using a different set of login credentials you can only use a single set of login credentials to gain access to these applications.
Two-Factor Authentication (2FA)
Two-Factor Authentication or 2FA is a security process in which two sets of information are required for authentication i.e something you know along with something you have. For example, you know your login credentials such as username and password along with an OTP or a Security token which you have.
How 2FA solve username and password problems?
Atlassian products such as Jira, Confluence are used by all of us, each for a different purpose. Protecting these applications with just a username and password is not enough, therefore adding an extra layer of authentication such as 2FA makes our application much more secure and generates single-use code that is either shown in their security token or sent as a text message to a mobile phone.
How SSO and 2FA work together?
Authentication methods such as SSO makes login easier for us. But many times it is seen that people use only a single set of credentials for multiple applications and also save those credentials online. Human flaws such as these can cause severe data loss. To overcome such flaws, 2FA can be implemented along with SSO which will add an extra layer of security for data protection.
There are few ways through which 2FA and SSO can be implemented together:
Identity Providers (IdPs) that support 2FA -
If you are currently using a commercial Identity Service, you will be offered several choices for Two Factor Authentication/Multi-Factor Authentication. There are a lot of ways through which one can go passwordless these days.
These are names of a few IdP that provide 2FA along with SSO:
Dedicated 2FA apps for Atlassian Products -
There are several add-ons available on the Atlassian marketplace which provide dedicated 2FA plugins for Atlassian Products such as Jira, Confluence, etc one among them which is highly rated and recommended by customers is Two Factor Authentication(2FA) by miniOrange.
Why miniOrange 2FA?
miniOrange Two-Factor Authentication (2FA) application ensures the right set of eyes have access to your sensitive information sitting on-premise. Among all the plugins present in Atlassian Marketplace which provide 2FA, Two Factor Authentication(2FA) by miniOrange provides a wide range of authentication as well as customizable features, one of which is customizable 2FA on top of SSO.
Benefits and a few of our top features are mentioned below -