Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Confluence SSO user provisioning

Christoffer Krogslund
Christoffer Krogslund
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
September 2, 2020

HI,

 

I have an Confluence server installation and have integration with Azure AD via Confluence SAML SSO by Microsoft - but I can't figure out the user provisioning. 

I have a AD group with me in it, but every time I log in I get "User is not available in Confluence. Please contact your Confluence admin"

How should I provision users from my corporate Azure AD?

 

Hope someone can help.

Answer
Watch
Like Be the first to like this
1023 views

2 answers

1 accepted

1 vote
Answer accepted
Prakash Kumar
Prakash Kumar
Contributor
September 2, 2020

Welcome to the Atlassian community. This is Prakash here from miniOrange,

we have an automated user provisioning app which can solve your problem

You can take a look at our SAML SSO app & User Sync app.

SAML SSO: https://marketplace.atlassian.com/apps/1215542/confluence-sso-single-sign-on-saml-sso?hosting=server&tab=overview

User Sync app: https://marketplace.atlassian.com/apps/1222394/confluence-user-sync-group-sync?hosting=server&tab=overview

 

Please reach out to miniOrange at atlassiansupport@xecurify.com or using the customer portal and the team will help you out to configure the plugin as per your requirements.

 

Kind regards,
Prakash

Reply
1 vote
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 2, 2020

Hi Christoffer,

to my knowledge, the free Microsoft Plugin does not support any user provisioning at all. It only supports authentication (of existing users).

In order you to provision users you may have to use third-party plugins like ours, where you would have a choice between:

Users Sync & Groups Sync Confluence 

This is a plugin providing provisioning capabilities to many common IdPs including Azure AD. You could use this in conjunction with the Microsoft Plugin.

- SAML Single Sign On SAML SSO Confluence 

This plugin already includes all the Users Sync functionality from the above Plugin and also includes the capability to do SAML Authentication. You then no longer would need the Microsoft one.
It's the most used one in the Atlassian Ecosystem and has a variety of additional features compared to the Microsoft SAML Plugin.

Besides ours, there are some other plugins in the Marketplace - you should get a good overview here: https://marketplace.atlassian.com/search?query=saml

If you want to get an impression of the Configuration of our plugin - here is a link to our Step-by-Step Guide with Azure AD (including a Tutorial Video): https://wiki.resolution.de/doc/saml-sso/latest/jira/setup-guides-for-saml-sso/azure-ad/azure-ad-with-user-sync


Cheers,
    Chris

P.S. Full disclosure, I work for resolution, a marketplace vendor.

View More Comments
Christoffer Krogslund
Christoffer Krogslund
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
September 2, 2020

In this solution would I need to sync the whole AD to confluence? I only need a small subset (1 AD group) to gain access to confluence.

 

Kind regards,

Christoffer

Like
Christian Reichert (resolution)
Christian Reichert (resolution)
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
September 2, 2020

No that is not necessary.

There is a setting called "Groups mandatory to sync" in the Advanced settings of the Azure AD connector, where you can limit which users are being sync'd. Then only users in that(those) group(s) will be synchronized.

More details here: https://wiki.resolution.de/doc/usersync/latest/knowledge-base/group-management-and-filtering-with-user-sync#id-.GroupManagementandFilteringwithUserSyncv1.1.x-MandatoryGroups

Cheers,
Chris

Like
Reply

Suggest an answer

Log in or Sign up to answer
Confluence
Confluence
DEPLOYMENT TYPE
SERVER
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.