Using Atlassian Access with external users

Ådne Brunborg September 23, 2019

Hi,

We're looking to start using Atlassian Access to simplify user login (all the general SSO benefits). However, we also have some external users in out JIRA - that is, users not part of our organisation, without a user profile in our Azure AD. (Consultants, vendors, that sort of thing.) 

The short question is - will this be a problem? If/when we set up Atlassian Access, will these users still be able to log into JIRA?

1 answer

1 accepted

2 votes
Answer accepted
tim van der maas September 23, 2019

Hi ,

We use SSO and user provisioning by the access tool.  You can still invite users from an external domain to join. They can just login with a not AD account. I dont think they can have a @domainname adres because there will be a redirect to your service provider.

Hope this helps!

Ådne Brunborg September 23, 2019

Thanks!

Sekhar Chandra
Contributor
January 7, 2020

Hi @tim van der maas 

 

What if the external user want to connect from a different network that is not the jira server hosting network and the user doesn't have vpn access too.

He is trying connect from his organisation's network.

 

Please help this.

Thanks,

Chandra.

Ådne Brunborg January 7, 2020

Hi @Sekhar Chandra ,

As far as I understand, Atlassian Access is a cloud product, and only works across Atlassian cloud products. It sounds like you're using an on-prem server installation?

In order to log on to any server installation, a user needs to be able to access the network hosting the server. This is true also for Jira.

So, you need to provide access, either VPN or physical. Or migrate to a cloud solution, either with or without Atlassian Access.

br,
Ådne

Sekhar Chandra
Contributor
January 8, 2020

@Ådne Brunborg 

You are exactly right, we are using on-prem server. But we tried this by adding a proxy link provided for the external users in server.xml file, adding to this, need we make the external users' IP ids' whitelisted? 

If yes, how to do that?

 

Thanks

Chandra.

Ådne Brunborg January 8, 2020

@Sekhar Chandra , the user has to be able to access the network. If coming from the outside, then either whitelisting or VPN should work, but bear in mind that whitelisting requires the external ip adderss to be static. It also provides a security attack point if the other network is breached, so I would advise against it.

I think a VPN is the way to go for you. But in any case, this is a question for your network admins. 

br,
Ådne

Sekhar Chandra
Contributor
January 8, 2020

@Ådne Brunborg 

Thanks very much.

You helped a lot.

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events