Uploaded image for project: 'Atlassian Guard'
  1. Atlassian Guard
  2. ACCESS-1305

Move the managed accounts to another authentication policy when re-linking a domain

XMLWordPrintable

    • 22

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Steps to Reproduce

      1. Setup an identity provider (w/ SAML) and link a domain
      2. Verify the domain accounts are on the default authentication policy of the identity provider.
      3. Un-claim the domain (ie. simulate a problem with the domain verification). The accounts should move to the "Users in local directory" authentication policy. 
      4. Reclaim the domain and re-link the domain to the identity provider to recover the SSO settings. 
      5. The accounts are not moved and remained on the "Users in local directory" authentication policy. 

      Suggestion 

      Allow to automatically move the managed accounts to another authentication policy when re-linking a domain

            [ACCESS-1305] Move the managed accounts to another authentication policy when re-linking a domain

            Chris Lingwood added a comment -

            This issue isn't related to re-linking at all, its related to existing users when a Identity Provider is set up.

            The user interface gives no feedback that this policy isn't automatically going to be applied to all users, only new users. From the naming i would have expected this to be applied to the "All users from" group. That it isn't is suprising given the name of the policy.

            Chris Lingwood added a comment - This issue isn't related to re-linking at all, its related to existing users when a Identity Provider is set up. The user interface gives no feedback that this policy isn't automatically going to be applied to all users, only new users. From the naming i would have expected this to be applied to the "All users from" group. That it isn't is suprising given the name of the policy.

              maho Matthew Ho (Inactive)
              rmacalinao Ramon M
              Votes:
              5 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated: