Hi,
We are new to Jira and have a Premium account for JSM and Guard in the cloud. I am trying to set up SSO and am unsure which set of instructions to follow as I have found multiple on this site, as well as as on Microsoft's site.
While they all are similar, I have yet to be totally successful.
One set of instructions says to use the Atlassian Guard app in Entra. Another set says to create a new application. I currently have the new application method working except that I when I try to set up Azure AD Sync, I get an error, saying it cannot reach the page:
As well, when a user logs into the portal, Jira says it cannot verify the domain and wants a verification code from an email that it sends. Of course, we don't want to do this for every user. We just want them to log in with SSO without any obstacles.
I hope I am clear, but please let me know what else I need to provide and/or what steps I need to take to get this working successfully.
Thanks.
Rich.
You should use the official "Atlassian Cloud" enterprise application from Microsoft's app gallery, not create a custom application. This is the current best practice.
Follow these official guides in this order:
Let me know how you go with this!
Amaresh
Amaresh,
Thank you for this information. It's just what I need. To do this, I want to start over - remove the identity provider and delete the app from Entra. The Entra side was easy, but when trying to remove the IP from Jira, it tells me to remove the SAML configuration. Unfortunately, the only option I have is to Set up Azure AD Sync, so I cannot get to the SAML configuration to delete it. And when I try to set it up, I get another error page like in my original message saying it can't reach the page.
So now I am stuck, I cannot delete the IP, nor can I see the SAML settings or edit them to make the connection.
How can I delete this IP so I can make some progress and get this working properly?
Thanks.
Rich.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hmm, I haven't come across that one before. 
Have you tried reaching out to Atlassian Support to see if they can reset the IdP configuration from their end? 
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
 
 
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.