SAML Single Sign On – Atlassian or miniOrange?

miniOrange stands as a reputed partner and provider of security and SSO solutions for multiple platforms within the industry. Built on a strong foundation of security fundamentals, we provide secure and reliable Identity and Access Management (IAM) solutions that integrate seamlessly with the customer's existing frameworks. We provide SSO solutions for all the Atlassian applications using protocols like SAML, OAuth 2.0, OIDC, etc. SSO enables users to securely authenticate with multiple applications by logging in only once - with just one set of login credentials.

Both miniOrange and Atlassian provide SAML SSO feature in all Atlassian host applications. miniOrange SAML plugins are rich in features and very easy to setup. You can see a comparison of features of Atlassian SSO2.0 and miniOrange SAML plugins below.

Free Installation and Setup

We provide help in installation and setup of the entire plugin

Advanced features

We provide advanced Single Sign-On and Security Features

World Class Support

We provide dedicated support for every query with quick response

Fit for every use-case

Built over 3+ years with feedback from customers to fit real world usecases

miniOrange Unique Features

Setup Guides With 20+ IDPs

We provide setup guides for all the known IDPs - miniOrange, Google Apps, ADFS, Okta, OneLogin, Azure AD, Salesforce, Shibboleth, SimpleSAMLphp, OpenAM, Centrify, Ping, RSA, IBM, Oracle, Bitium, WSO2, NetIQ etc. If you are using any other IDP then, please contact us for assistance in setup.

Attribute Mapping

Maintain the same user attributes across your IDP and your Atlassian applications through SSO. With attribute mapping options, profile attributes of users are updated in the Atlassian applications as per user profile on IDP when the user logs in via SSO.

Permission Management (Group Mapping)

We provide various options to map user's IDP groups to local Atlassian application groups. You can manage user permissions by assigning them to groups with specific application access permission.

Complete Control Over Login Flow

With our add-on, you get full control over the login flow of your users. You can decide where your users will be redirected for login and you can change the look and feel of the login page also.

Advanced Security Features

To increase the security of your SSO flow, you can use our signing and encryption features. With these options, you can ensure that no one else gets access to the sensitive user information received from the IDP.

Limitations of Atlassian SSO 2.0 app

  1. Support For advanced SSO and Security Features

    Atlassian SSO2.0 application only provides the basic Single Sign-On. It does not provide any extra security to your SSO flow. On the other hand, miniOrange SAML plugins are rich in both authentication and security features.

Feature Comparison

Feature Details miniOrange SAML plugin Atlassian SSO 2.0 app
Single Sign-On features
Basic Single Sign-On Support for basic SSO with IDP
Support for 20+ IDPs Provides support and setup guides for all known IDPs
Import metadata Quick plugin setup by importing IDP metadata using file/URL
Test configuration Provision of testing the configuration before rolling out for your users
Certificate Rollover Automatic Sync of IDP Certificates for encryption and signing
NameID format Provision to select the NameID format
Download SP Metadata Quick setup at IDP using SP metadata file/URL
Configurable SP URLs Provision to change the SP URLs in case a proxy is configured
Security features
Encryption Provision to Encrypt and Decrypt SAML requests and responses
Signed Requests Provision to send signed SAML requests to prevent request forging
(for eg. by the man in the middle attack)
Custom Certificates Provision to configure your own certificates and to generate certificates from the plugin.
User and groups Provisioning
User Profile Attributes Sync Support to map user profile attributes to keep the user information on Atlassian application in sync with IDP
Login Attribute Option to choose either the Email address or Username as login attribute
Regex for username Use regex to extract username from any attribute (for eg., email)
Permission Management Manage users permissions by assigning groups with application permissions to users on SSO
Group Mapping Provision to map groups from IDP to local groups
On The Fly Group Mapping Synchronize users groups from IDP to Atlassian application on SSO
Redirection Rules
Force Authentication Auto Redirect to Identity provider for Login
Emergency/Backdoor URL To allow Atlassian application login page access to a specific set of users (mostly admins)
Look and Feel
Custom Templates Provision to customize the Login and Error Pages
Custom logout Provision to customize the Logout Pages and provision to configure a logout URL
Other Features
Import/Export plugin configurations Easy to migrate to a new instance. (For eg., Staging to Production instance)
Remember Login Feature to remember a user login to avoid multiple logins on the same device
Disable Password Reset Feature to remove the ability from users to reset the password of Atlassian Application
Auto Activate Users on SSO Provision to allow auto activation of users that are deactivated on Atlassian application at the time of SSO