[ACCESS-1379] AAid gets unlinked while changing an email from Managed to UnManaged vis SCIM

Type: Bug
Resolution: Answered
Priority: High
Component/s: User Sync - SCIM Maintenance
Labels:
None

Support reference count:
11
Symptom Severity:
Severity 2 - Major
Bug Fix Policy:
View Atlassian Cloud bug fix policy

Issue Summary

Email change from Managed to Unmanaged is prohibited in Atlassian Cloud.
However, when this change is triggered via SCIM, the AAid- SCIM link gets broken.

This is reproducible on Data Center: (yes) / (no)

Steps to Reproduce

Push an update for an account to change the email from Managed to Unmanaged via SCIM
The email gets updated on IDEA however the AAid of the old user is removed from SCIM

Expected Results

The update fails on SCIM and an error is shown

Actual Results

IDP-Atlassian SCIM link breaks for the user.
Org Admins get confused so as to what exactly happened.

We see the following error in the Provisioning logs:

Email update to unmanaged user with ID ********, primary email user@domain.com, unlinked any associated Atlassian account.

Workaround

Relink the AAid with SCIM by the help of maintenance API however, even this will end up with the user having 2 Atlassian Accounts

follows

ACCESS-979 Allow managed account email addresses to be changed to a domain not verified at the organization

Gathering Interest

is related to

ACCESS-1396 Ability to check and re-sync unlinked external user SCIM records

Gathering Interest

mentioned in: Page Failed to load

Form Name

Ramon M made changes - 05/Jun/2024 1:23 PM

Link

New: This issue is related to ACCESS-1396 [ ACCESS-1396 ]

Yang Li made changes - 11/Jul/2023 12:05 AM

Resolution		New: Answered [ 9 ]
Status	Original: Needs Triage [ 10030 ]	New: Closed [ 6 ]

SET Analytics Bot made changes - 06/Jul/2023 4:00 AM

Support reference count

Original: 10

New: 11

SET Analytics Bot made changes - 30/Jun/2023 4:00 AM

Support reference count

Original: 9

New: 10

FellowJitster added a comment - 28/Jun/2023 5:22 PM

We are looking on changing this behavior but before we can plan for this on the roadmap we are waiting on security for approval

https://asecurityteam.atlassian.net/servicedesk/customer/portal/19/PSHELP-25711?atlOrigin=eyJpIjoiYjQ5Y2Q2MWIwMTYzNDgyYzg2NzJlOTYwMTQ1YzFiYmIiLCJwIjoiamlyYS1zbGFjay1pbnQifQ

FellowJitster added a comment - 28/Jun/2023 5:22 PM We are looking on changing this behavior but before we can plan for this on the roadmap we are waiting on security for approval https://asecurityteam.atlassian.net/servicedesk/customer/portal/19/PSHELP-25711?atlOrigin=eyJpIjoiYjQ5Y2Q2MWIwMTYzNDgyYzg2NzJlOTYwMTQ1YzFiYmIiLCJwIjoiamlyYS1zbGFjay1pbnQifQ

Yang Li made changes - 27/Jun/2023 5:06 PM

Status

Original: In Progress [ 3 ]

New: Needs Triage [ 10030 ]

Yang Li made changes - 20/Jun/2023 9:01 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 778069 ]

SET Analytics Bot made changes - 16/Jun/2023 4:00 AM

Support reference count

Original: 7

New: 9

Bugfix Automation Bot made changes - 16/Jun/2023 12:30 AM

Priority

Original: Medium [ 3 ]

New: High [ 2 ]

SET Analytics Bot made changes - 15/Jun/2023 4:00 AM

Support reference count

Original: 6

New: 7

Assignee:: Yang Li

Reporter:: Ulka

Affected customers:: 2 This affects my team

Watchers:: 13 Start watching this issue

Created:: 12/Apr/2022 11:20 AM

Updated:: 05/Jun/2024 1:23 PM

Resolved:: 11/Jul/2023 12:05 AM

Details

Description

Issue Summary

Steps to Reproduce

Expected Results

Actual Results

Workaround

Attachments

Issue Links

Forms

Activity

Collapse comment: FellowJitster added a comment - 28/Jun/2023 5:22 PM

Expand comment: FellowJitster added a comment - 28/Jun/2023 5:22 PM

People

Dates