Uploaded image for project: 'Atlassian Guard'
  1. Atlassian Guard
  2. ACCESS-85

Allow bypassing SSO Authentication for Managed Accounts

XMLWordPrintable

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Release update

      Hi,

      We are excited to announce that we have shipped the Authentication policies feature. Using this feature you can bypass SSO for certain managed accounts. (https://www.atlassian.com/software/access/guide/elements/authentication-policies#why-apply-multiple-authentication-policies). We are still in the last leg of the rollout. If your organization doesn’t have the feature yet, file a support ticket (https://support.atlassian.com/contact/#/) and we will enable the feature for you.

      Thanks,

      The Atlassian Access team.

       Problem Definition

      For unmanaged accounts that are leveraged for purposes similar to add-on accounts, admins have no way of enforcing security policies.

      In contrast, for managed accounts, admins have no method to bypass SSO initiated logins.

      Suggested Solution

      Allow Org Admins the ability the option to configure a managed account to use conventional SSO settings or force authentication against id.atlassian.com but still enforce security policies.

      Why this is important

      As a Site-admin, its not feasible to establish and maintain local service accounts for a few reasons:

      1. Users that login to other Cloud instances wouldn't be redirected to SSO but they would still have security policies applied
      2. Atlassian Accounts creates more administrative overhead (now that we have managed accounts it can be viewed as being uncomplimentary)
      3. Atlassian Accounts cannot be enforced with security policies

      Workaround

      No workaround.

            njayasankar@atlassian.com Narmada Jayasankar
            jworley Jason Worley (Inactive)
            Votes:
            69 Vote for this issue
            Watchers:
            88 Start watching this issue

              Created:
              Updated:
              Resolved: