SSO - Atlassian

Allow Foxpass users to log in to Atlassian via SSO

📘

Note: Before SAML logins with Atlassian verify make sure do these in your atlassian acoount

SSO Configuration

Configuring Atlassian as a service provider

  1. Click the 'enable' button for Atlassian on the SSO - Service Providers page. Optionally select any specific Users or Groups to be allowed for SSO and then click the Save button.
  2. Click on the 'IDP Certificate' button to download the Foxpass IDP Certificate file.
  3. From your organization at admin.atlassian.com, select Security and then SAML single sign-on
  4. Click Add SAML configuration and set up the IDP using the following settings:
Identity provider Entity ID: foxpass.com
Identity provider SSO URL: https://console.foxpass.com/settings/sso/login/

Upload the certificate from step 2 in the Public x509 Certificate box.

541541

Atlassian IDP settings

  1. After saving you will see SP Entity ID and SP Assertion Consumer Service URL in the following format. We will use this connectionId later.
SP Entity ID: https://auth.atlassian.com/saml/{connectionId}
SP Assertion Consumer Service URL: https://auth.atlassian.com/login/callback?connection=saml-{connectionId}
  1. Configure the Atlassian service provider in Foxpass with the following custom fields:
key: connectionId
value: <your connectionId from step 6>
594594

📘

Now you can test SAML single sign-on for your Atlassian organization

  • Open a new incognito window in your browser.
  • Login with an email address from one of your verified domains from foxpass.

Confirm you are signed in and have all the expected access

Now you’ll need to configure and save SAML and then enforce SAML single sign-on in an authentication policy.

  1. Configure SAML single sign-on from Authentication policies:
    a. Navigate to Authentication policies at admin.atlassian.com.
    b. Select Edit for the policy you want to configure.
    c. When you select Use SAML single sign-on, you’re redirected from the authentication policy to the SAML SSO configuration page.

  2. Enforce single sign-on:
    a. Navigate to Authentication Policies at admin.atlassian.com.
    b. Select Edit for the policy you want to enforce.
    c. Select Enforce single sign-on.

Do not hesitate to reach out to us if you have any feedback or issues.