-
Suggestion
-
Resolution: Fixed
-
None
Hi everyone,
My team and I have been working on the ability to connect your existing cloud site groups with you IDP groups. We are happy to announce that we shipped this capability today to all customers. Here is a description of how this feature works https://confluence.atlassian.com/cloud/resolve-group-conflicts-before-syncing-users-1014677306.html .
Thanks for voting and commenting on this issue. Your feedback has been incredibly helpful to our team as we’ve worked on bringing this feature to you.
Cheers!
Narmada Jayasankar
Product Manager, Atlassian Access
njayasankar@atlassian.com
SCIM user provisioning: Allow the Organization's directory to pull groups from the integrated Cloud sites in order to use these same groups for management on the Identity Provider.
For Okta
This would allow Okta to pull the same groups from Atlassian to link with its own groups of users, instead of pushing new groups to a Cloud site to be re-configured on permission level and memberships.
For other IDPs
It would depend on how the Identity Provider handles groups and SCIM integrations.
- is duplicated by
-
- Closed
- mentioned in
-
![[Atlassian Documentation] Page](/images/icons/generic_link_16.png "[Atlassian Documentation] Page")
Page
No Confluence page found with the given URL.
-
Page Failed to load
-
Page Failed to load
-
Page Failed to load
-
Page Loading...
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
[ACCESS-608] SCIM user provisioning: Allow the Organization's directory to pull groups from the integrated Cloud sites
Hi everyone,
Thanks for your feedback on this issue. We’re currently investigating some improvements to user provisioning to help customers with this issue, and we now have design prototypes.
If you can spare 30 minutes to chat with me about this over video call or provide feedback over email, email me at sshaheed@atlassian.com
to let me know you’re interested in providing some feedback on the draft designs!
Thanks!
Simi
Designer, Atlassian
Can't you simply allow add provisioned groups into already existent groups? (like nested groups we used to have in Jira Server, befor Jira Cloud)
This way we could create new idp provisioned groups, and add the new groups into pre existant groups, so no need to change the permissions in projects
This is High priority to us, we have over 1200 already existant accounts and over 100 already existant projects.
All our projects permissions are based in these existant groups.
Atlassian Access with SCIM provisioning Is a no-go for us if we would have to create new groups and edit all our projects to redefine permissions based on new groups.
This is important in cases of Server to Cloud migration, we have a customer that used to have LDAP sync in server and now after moving to the cloud we are having this limitation to enable the user provisioning to sync the groups.