SSO: Entra ID SSO doesn't work, creates new user not managed by IDP
Hello,
I’m currently trying to set up SSO with Entra ID as my IDP on Atlassian Cloud. The initial configuration works: I’ve successfully connected Entra ID as my IDP and configured SSO.
I’ve also created a group in Entra ID containing users that should be synced to Atlassian Cloud. For example, one of the users with the following UPN jdoe@domainA.com.
Problem:
In Atlassian, the users don’t appear by their UPN (e.g., jdoe@domainA.com) but by their email address (e.g., johndoe@domainA.com). When logging in to my organization using SSO with the UPN (jdoe@domainA.com), Atlassian creates a second user (jdoe@domainA.com) that is not managed by my IDP and seems to be treated as an external user.
As a result, I now have two users:
johndoe@domainA.com(managed by IDP; name and email cannot be changed)jdoe@domainA.com(seemingly not managed by IDP, despite being logged in via Microsoft SSO; name and email can be changed within Atlassian)
For further context, here are the Attributes and Claims I've configured in EntraID:
Could you help resolve this issue?
1 answer
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.