Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

SSO implementation is too restrictive

Philip Colmer
Philip Colmer
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 4, 2021

We are currently self-hosting Service Desk as part of a portfolio of services to staff and external customers. All of the services support SSO and we are using Auth0 to act as the IdP.

Everyone logs in with their own email address. We create accounts on Auth0 with those email addresses.

With the retirement of the Server range, we've been looking at migrating to Atlassian Cloud but there is one massive brick wall in our way: SSO only works for verified domains.

That simply isn't going to work for our setup because customers can register with any email address they like and we literally cannot verify all domains.

As a result, if we were to migrate to Atlassian Cloud, Service Desk (Service Management) would be the only service in our portfolio that didn't support SSO.

This seems to be down to how Atlassian Access has been built and, at one level, I think I understand it because it means that once I've added Atlassian Access and verified a domain and configured SSO, I can then log on to any Atlassian Cloud product that I have access to - even if it is owned by another Atlassian customer - and I will be logged in with SSO.

But, with the way things stand, I cannot see a solution to this other than moving to a competitive ticketing system. It isn't a decision I want to make, which is why I've started this discussion. I'm hoping that someone can suggest a solution that would allow us to use Atlassian Cloud and allow customers with any email address log in with SSO.

 

Answer
Watch
Like Be the first to like this
611 views

0 answers

Suggest an answer

Log in or Sign up to answer
Atlassian logo
Atlassian Guard
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.