Domain verification

This question is in reference to Atlassian Documentation: Managed accounts and domain claim verification

Most of our users have the same domain for an email address and we will follow the process to verify our domain, but some of our users are external vendors from various companies. Will they run into problems once the domain changes go into effect on 10/24?

1 answer

This widget could not be displayed.

Hi, Ted!

Users on your site that are outside your domain(s) are either externally managed accounts or personal accounts. Without claiming their domain, authentication policy cannot be enforced on them nor can their full name be altered. You can still restrict access to an email address that you want the user to use. To access your site, the user will need to use an Atlassian account associated with your suggested email.

Besides that, they shall not run into any problems. smile

We have contractors and suppliers who collaborate with us using email usernames from 50 different domains and we cannot set them up with email addresses on our company domain which are only for employees. That's the POINT of us having Cloud JIRA in the first place, so that we can enable collaboration in this way. If we don't verify those domains does it mean we cannot adminster those accounts AT ALL - including deactivating those accounts? If so - this sucks. Massively.

The users will still work fine but admins will not be able to make changes to the display name of the user or the password, but you can still edit the username, email address and activate/deactivate accounts. You also can't apply a password policy to users outside of the verified domain, but that's it. Soon, Atlassian has planned to implement DNS verification as well. I hope to have answered your question, if you can vote it, I'd appreciate it! 

We have a similar situation. We have set up client users on our Cloud JIRA/Confluence and they use their client email address as a logon. Sounds like this proposed change means I no longer control anything about these accounts even though I set them up with access. Some questions:

  • Who wold they go to to reset passwords, 2FA, etc? Atlassian?
  • How do they change their name if it is mistyped?
  • Can I still invite users to use our instance or do they need to setup Atlassian account and request access?
  • In this model what does my ability to "deactivate" an account really mean?
  • What will be Atlassian default password policy / 2FA policy for these "unmanaged" accounts?

For my users, what is situation for Google accounts. I was able to get an Atlassian password even though I have Google Apps SSO enabled. Does domain verification now control those?

Does account verification page need to be up permanently or only until account verification is done?

So if one of these users forgets their password what could an admin do?  I assume we can still create users with email addresses outside our domain?  If not this would be a huge limitation on using Atlassian.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted 5 hours ago in Jira

Atlassian Research Workshop opportunity on Sep. 28th in Austin, TX

We're looking for participants for a workshop at Atlassian! We need Jira admins who have interesting custom workflows, issue views, or boards. Think you have a story to sha...

23 views 1 2
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you