[ACCESS-37] Have the option to configure SAML at instance level rather than at organization level

Type: Suggestion
Resolution: Won't Fix
Component/s: IdP SSO - User Login
Labels:
None

Feedback Policy:

Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

Problem Definition

When a customer has several separate Cloud instances with different URLs on the same domain, they cannot create and link two separate applications within their Identity Provider as the Entity Provider URL is configured at organization level and not at instance level. Each of the separate applications will have a separate Entity Provider URL.

This disrupts the Identity Provider initatiated workflow as it doesn't allow the customer to create separate applications for each of the instances and manage separately the access to those aplications.

Workaround (Optional)

When users log in via the Cloud instance URL (Service Provider initiated workflow) the users can still access.

is related to

ACCESS-605 Allow Atlassian Access security policies to a subset of the managed accounts in an organization

Closed

is superseded by

ACCESS-572 Allow multiple Identity Provider(IdP) configurations for a single org and domain

Closed

mentioned in: Page Failed to load; Page Failed to load

Rob Saunders made changes - 11/Mar/2020 4:48 AM

Comment

[ Thank you for such important and essential tips, I will surely follow your guidelines to increase the traffic to my website. Increasing the traffic for your website is a very difficult task and you can get help from [college essay writers|https://collegessaywriters.com/] to solve your problems easily. I respect you for helping people. ]

Katherine Yabut made changes - 19/Sep/2019 5:42 AM

Workflow	Original: JAC Suggestion Workflow [ 3332667 ]	New: JAC Suggestion Workflow 3 [ 3588263 ]
Status	Original: RESOLVED [ 5 ]	New: Closed [ 6 ]

Shawn C made changes - 08/Aug/2019 4:33 PM

Link

New: This issue is related to ~~ACCESS-605~~ [ ~~ACCESS-605~~ ]

Michael Andreacchio made changes - 06/Aug/2019 5:21 AM

Workflow	Original: ACCESS Suggestion workflow [ 3156128 ]	New: JAC Suggestion Workflow [ 3332667 ]
Status	Original: Closed [ 6 ]	New: Resolved [ 5 ]

Rob Saunders made changes - 24/Jul/2019 10:27 PM

Remote Link

New: This issue links to "Page (Confluence)" [ 438801 ]

Katherine Yabut made changes - 16/Apr/2019 6:35 AM

Workflow

Original: reviewflow [ 2487799 ]

New: ACCESS Suggestion workflow [ 3156128 ]

lingbo (Inactive) made changes - 19/Dec/2018 8:03 PM

Component/s

New: SAML [ 53303 ]

Dave Meyer made changes - 10/Sep/2018 11:16 PM

Link

New: This issue is superseded by ~~ACCESS-572~~ [ ~~ACCESS-572~~ ]

mchyzer2 added a comment - 10/Aug/2018 5:16 PM

We have a large organization (upenn.edu) and we want SSO for our IT department site. But if an alumni or a staff member in another school uses their whatever@upenn.edu email account, why should we have to pay an IAM fee? There should be a solution to this use case. Thanks, Chris

mchyzer2 added a comment - 10/Aug/2018 5:16 PM We have a large organization (upenn.edu) and we want SSO for our IT department site. But if an alumni or a staff member in another school uses their whatever@upenn.edu email account, why should we have to pay an IAM fee? There should be a solution to this use case. Thanks, Chris

Dave Meyer made changes - 03/Aug/2018 6:06 PM

Remote Link

Original: This issue links to "Page (Confluence)" [ 379109 ]

Assignee:: Unassigned

Reporter:: Miguel Alonso

Votes:: 0 Vote for this issue

Watchers:: 17 Start watching this issue

Created:: 06/Dec/2017 11:25 AM

Updated:: 11/Mar/2020 4:48 AM

Resolved:: 26/Dec/2017 11:39 PM

Details

Description

Problem Definition

Suggested Solution

Workaround (Optional)

Attachments

Issue Links

Forms

Activity

Collapse comment: mchyzer2 added a comment - 10/Aug/2018 5:16 PM

Expand comment: mchyzer2 added a comment - 10/Aug/2018 5:16 PM

People

Dates