Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

JIRA and Azure AD + MFA

Humberto Gomes
Humberto Gomes
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 13, 2020

New Business challenge:

I need to configure our JIRA server to connect our users via Azure AD and MFA.
Azure already has MFA configured, so probably this is solved, it is needed to select the best option to connect with Azure.

I can see some apps in the market but are they the best solution?
Have Jira already an integrated solution?

Can you share your experience?

Humberto.

Answer
Watch
Like Mary Gorbach likes this
2201 views

3 answers

0 votes
Humberto Gomes
Humberto Gomes
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 13, 2020

I found this article:

https://www.atlassian.com/blog/enterprise/openid-connect?utm_source=product-announcement-email&utm_medium=email&utm_campaign=P%3Ano-product%7CO%3Aserver%7CF%3Aconsideration%7CC%3Ablog%7CH%3Afy20q3%7CI%3Aopenid-connect%7CY%3As2dc%7CE%3Adc-server%7CR%3Agsb%7C&leadid=3502248&programid=1890&mkt_tok=eyJpIjoiTmpabE5qSmxNV1EwWkRNeiIsInQiOiJLNWJza1I5b3ZYUGJScWswUGxTZ2ZleWg5ZEprNXg2QzAwZWFjTXpCS0VIb2tcL3h3NlJOY3BsZ3RJVEZKeXVoejk3YVIzQzhsUlFTd2NxMk5ERWFSNnIxS0luU0dCXC9cL2tOeWhcL3Z6RGRuSWJjU3J5ckt6d3lsMVUx...

 

is this only for Data Center?

 

OIDC can be a solution.

We have Server version.

Someone to help?

View More Comments
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 13, 2020

DC only - sorry.

Like
Jon Espen Ingvaldsen Kantega SSO
Jon Espen Ingvaldsen Kantega SSO
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
April 3, 2020

@Humberto Gomes The article you found explains the benefits of OpenID Connect (OIDC) very well, and it is a modern alternative to SAML. In practice, the two protocols have many similarities, but OIDC is built on top of OAuth 2.0 and use more modern web technologies (JSON and REST rather than XML and SOAP). It also include the ability ask for user consent before personal data is accessed.

Kantega SSO Enterprise supports SSO with MFA for both OIDC and SAML. We have published a step-by-step guide for how to integrate AzureAD and Jira with OIDC here: https://kantega-sso.atlassian.net/wiki/spaces/KSE/pages/11993089/Azure+AD

If is also a good advice to disable traditional logins mechanisms to Jira when AzureAD is set up with MFA. You find a guide for how to enforce SSO here: https://kantega-sso.atlassian.net/wiki/spaces/KSE/pages/1868002/Forced+SSO+and+MFA  


Cheers,
Jon Espen 
Kantega SSO

Like
Reply
0 votes
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
March 13, 2020

Hi!

There is no real need to do this via Crowd - there are a variety of paid plugins for Server that allow you to directly authenticate against Azure AD. That authentication then also includes the MFA from Azure AD.

If you like have a look at our plugin, which is most used one in the marketplace: https://marketplace.atlassian.com/apps/1212130/saml-single-sign-on-sso-jira-saml-sso?hosting=server&tab=overview

Here are also out Step-by-Step Guides & tutorial videos that Guide you trough the Azure AD Setup: https://wiki.resolution.de/doc/saml-sso/latest/jira/setup-guides-for-saml-sso/azure-ad

If you like to see all the other Plugins in the Marketplace - here is a search for SAML: https://marketplace.atlassian.com/search?query=saml

Cheers,
Chris

P.S. Full disclosure, I work for resolution, a marketplace vendor.

Reply
0 votes
Moses Thomas
Moses Thomas
Community Champion
March 13, 2020

@Humberto GomesI have been waiting also for this ,  to make this  happen,  you would need to  Integrate JIRA server  with  Atlassian crowd (SSO)  and currently Crowd  does not support MFA

 

Kind regards,

Mo

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.