Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

Using SSO on an instance with multiple user directories?

Niko Roth May 14, 2025

We're running Jira DataCenter. Most of our users are internal to the organization, and their Jira accounts are using delegated LDAP authentication. The request has come up to enable single sign-on, and we could certainly do that using the built-in SAML connector.

However, we also have a number of external users, who access our Jira instance via a different, externally available URL. Their Jira accounts are stored in Jira's own user directory, as they are not members of our organization and thus do not have accounts in the Active Directory.

What happens if we enable SSO in this case? Will the external users receive error messages whenever they land on the login page? They need to be able to reach the username/password form, or they will not be able to log in. Is it perhaps possible to enable SSO only for visits from a specific URL, while not enabling it for visits from other URLs?

1 answer

0 votes
Laurie Sciutti
Community Champion
May 14, 2025

Hi @Niko Roth ~ you can certainly do this via the Authentication methods settings:  https://<yourdomain>/plugins/servlet/authentication-config

Niko Roth May 15, 2025

Hi Laurie, how exactly would I do that? Is it the Audience URL / Entity ID field that matters here? The Atlassian documentation is unfortunately very thin on information for this field.

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events