Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Is there a way to make Jira and Confluence 2FA?

Mark Tellier
Mark Tellier April 19, 2018

I will be using Jira both internally and externally through SSL. Is there a way to make the external access 2FA? While leaving the internal access with normal access?

Answer
Watch
Like Be the first to like this
727 views

4 answers

1 vote
Sloan N_ B_
Sloan
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 19, 2018

Hi @Mark Tellier

There are a few add-ons to archive 2FA in Confluence and Jira: https://marketplace.atlassian.com/search?query=2FA 

I worked quite a few time with the add-on by syracom AG. It allows for token generators like google Authenticator or Authy. You need two 2FA tokens though, one for Jira and Confluence each.

Cheers
Niklas

Reply
1 vote
Alexis Robert
Alexis Robert
Community Champion
April 19, 2018

Hello, 

 

I know that Duo Security provides 2FA for Jira and Confluence, you might to have a look at their offer.

Usually you can create groups with different security settings on these platforms.

 

Cheers, 

 

--Alexis

Reply
0 votes
Oliver Scott
Oliver Scott
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
December 17, 2020

Hello there,

Please correct me if I am wrong.

You want to implement 2FA for your Jira & Confluence server only when the user is trying to access server externally ie. from outside of your network.

Also, the login behavior should work as previously when user access servers from internally ie. from your internal network.

 

 

If this is your case then you achieve this by using the Whitelisting IP feature.

This feature allows you to skip or ignore 2FA when login request is raised from the configured IP address.

Here you can add your internal networks IP address as Whitelist IP address. So if login request is from one of these IPs then it will not ask for 2FA. But if IP is not from the Whitelisted IP address then it will ask for 2FA.

For this, you can refer the below link using which you can solve this problem

Jira 2FA/MFA:- https://marketplace.atlassian.com/apps/1221260/two-factor-authentication-2fa-for-jira?hosting=datacenter&tab=overview

Confluence 2FA/MFA:- https://marketplace.atlassian.com/apps/1221328/two-factor-authentication-2fa-confluence?hosting=datacenter&tab=overview

 

You can also raised query here to get the help from the support.

Reply
0 votes
Lars Olav Velle _Polar SSO_
Lars Olav Velle _Polar SSO_ June 26, 2020

Hi @Mark Tellier 

A few days ago we (Polarnight) published our Polar SSO plugins to the Atlassian Marketplace.

Built into the app you get SAML & Kerberos SSO, in addition to multifactor authentication/verification using both FIDO and TOTP codes. 

Multifactor are controlled by a highly flexible policy framework that allow you to define who should be encouraged or required to use extra verification.

You can also log in directly without password using fingerprint, face recognition, USB security keys.

 

Enjoy,

Lars

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.