Uploaded image for project: 'Atlassian Guard'
  1. Atlassian Guard
  2. ACCESS-790

Allow Group enrollment based on SAML attributes when using Just-In-Time provisioning

XMLWordPrintable

    • 33

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      When using Just-in-Time provisioning as described in our documentation here:
      https://confluence.atlassian.com/cloud/saml-single-sign-on-943953302.html#SAMLsinglesign-on-Just-in-timeprovisioningwithSAML

      The provisioning does not have the ability to control group enrollment based on input from the IdP (such as attributes). This means that a SCIM module must be developed in order to use custom SAML solutions e.g. Shibboleth or on premises ADFS.

      Because of the complexity that this can introduce, I would like to offer the suggestion that adding the ability to control group enrollment by SAML attributes be considered.

            [ACCESS-790] Allow Group enrollment based on SAML attributes when using Just-In-Time provisioning

            Aaron Vo added a comment - - edited

            Hi Atlassian, I hope this is not underrepresented due to to number of voters, since there are only a small number of idP administrators for each org. However, one idP admin's request will represent and affect large numbers of users.

            Aaron Vo added a comment - - edited Hi Atlassian, I hope this is not underrepresented due to to number of voters, since there are only a small number of idP administrators for each org. However, one idP admin's request will represent and affect large numbers of users.

              ayang@atlassian.com Aneita
              jlong@atlassian.com Jared Long
              Votes:
              25 Vote for this issue
              Watchers:
              30 Start watching this issue

                Created:
                Updated: