Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

2 organizations and 2 identity providers: is SSO possible ?

Carmen Nadeau
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
May 17, 2021

I read the documentation on organizations and the one regarding SSO and SAML and I can't seem to answer this question:

Is it possible to have 2 organizations (2 domains) and 2 identity providers in Atlassian access for the same JSM Cloud instance ?

2 answers

1 accepted

Suggest an answer

Log in or Sign up to answer
1 vote
Answer accepted
Dave Meyer
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 19, 2021

Hi @Carmen Nadeau ,

Yes you can set up 2 organizations with separate domains and separate identity providers, and users in both organizations can access the same JSM Cloud instance for SSO purposes.

The only caveats I would note are:

  • You can only configure SCIM user provisioning with the organization that the JSM Cloud instance that is directly linked to.
  • We don't currently support SSO for JSM portal-only customer accounts. (But we do support it for customers using Atlassian accounts)
Carmen Nadeau
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
May 19, 2021

I read your comment and the link document in reference in it.

Your answer surprised me and I re-read this page:

https://confluence.atlassian.com/cloudkb/saml-single-sign-on-and-provisioning-for-service-desk-customers-1027113836.html

In my mind what you are saying and what it is written is completly at the opposite. In the article it is imply that a customer do not use a licence and can be manage in Atlassian acces and can log with SSO, 

image.png

 

Wich one is it ? It does have an impact for us.

Carmen Nadeau
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
May 19, 2021
Dave Meyer
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
May 19, 2021

@Carmen Nadeau apologies for the confusing language. I was trying to summarize what the documentation already says, it is correct.

Customers that are users in the site with Atlassian accounts with no application access can have SSO enforced, but are not billable for Atlassian Access.

JSM also has a feature called "portal-only customer accounts" that cannot use SSO today. This distinction is better explained in that second link you referenced above.

Like Carmen Nadeau likes this
0 votes
Eurora Solutions OÜ May 19, 2021

I have the same question - is it possible to use SSO\SAML IdP provider only for the one of our site or organization?

TAGS
AUG Leaders

Atlassian Community Events