You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
We are looking at ways to integrate Bitbucket and other atlassian products to Sailpoint IIQ for create and update purposes. What are the available APIs or collection we can use for account sync and entitlement/role sync. Or if there are any other ways to integrate these products to allow for aggregation of entitlements
Hello @Arshia Dhingra ,
If I understand correctly, you would like to know if it is possible configure your Atlassian Cloud product for SSO and user provisioning using Sailpoint IIQ. If that's not the case please provide more details.
Otherwise, let me first mention that while SSO can also be configured for generic Identity Providers:
If you don't see your identity provider in the table, you can still set up SAML single sign-on with the following steps.
1. Add the Atlassian product to your identity provider
In this step you tell your identity provider which Atlassian products will use SAML single sign-on.
_While user provisioning only works using one of the supported Identity Providers, but you can try to use the user provisioning API to create your own integration:
Supported identity providers
Your user provisioning setup depends on the identity provider you use. Supported identity providers include:
- Okta – Learn how to configure user provisioning with Okta.
- OneLogin – Learn how to configure user provisioning for OneLogin.
- Azure AD – Learn how to configure user provisioning for Azure AD.
- Google Cloud – Learn how to configure user provisioning for Google Cloud.
In the future, we may support more identity providers based on customer demand.
If you use another identity provider, you can use the user provisioning API to create your own integration that allows you to manage users and groups.
For further details on this topic, please see:
I hope this helps.
Thank you for the information. It was very helpful.
Just another quick question, are these api's specific to one platform such as bitbucket, jira, confluence or can they be used for all three platforms.
Also can we make one api call for all platforms, how do we differentiate each platform?
I hope the above questions are clear, let me know if you need further clarification.
Hi @Arshia Dhingra ,
As written in the Atlassian Access page, SSO works with all Atlassian Cloud products:
Atlassian Access is your enterprise-wide subscription for enhanced security and centralized administration that works across every Atlassian cloud product used at your organization including Jira Software, Jira Service Desk, Confluence, Bitbucket, and Trello.
However, at this current point in time, user provisioning is only available for Jira and Confluence.
For Bitbucket we have the below feature request that you can vote and watch, so that you will be updated in case of any progress:
Currently it is only possible to provision users from an external identity provider to and Jira and Confluence Cloud sites. This prevents customers from using an external identity provider to manager access to Bitbucket Cloud repositories. This feature would provide the capability to use groups defined in an external IdP to manage permissions for Bitbucket Cloud.
For further details on how user provisioning works for Jira and Confluence please review the already provided User provisioning documentation pages.