MiniOrange SAML SSO Or In-Built SSO – Atlassian Data Center

miniOrange stands as a reputed partner and provider of security and SSO solutions for multiple platforms within the industry. Built on a strong foundation of security fundamentals, we provide secure and reliable Identity and Access Management (IAM) solutions that integrate seamlessly with the customer's existing frameworks. We provide SSO solutions for all the Atlassian applications using protocols like SAML, OAuth 2.0, OIDC, etc. SSO enables users to securely authenticate with multiple applications by logging in only once - with just one set of login credentials.


Both miniOrange and Atlassian provide SAML SSO feature in all Atlassian host applications. miniOrange SAML SSO apps are rich in features and very easy to setup. You can see a comparison of features of Atlassian SSO2.0 and miniOrange SAML Data Center SSO apps below.

miniOrange SAML SSO Apps for Data Center

Why miniOrange?

Free Installation and Setup

We provide help in installation and setup of the entire plugin

Advanced features

We provide advanced Single Sign-On and Security Features

World Class Support

We provide dedicated support for every query with quick response

Fit for every use-case

Built over 3+ years with feedback from customers to fit real world usecases

miniOrange SAML SSO Data Center App Unique Features

  1. Sync user information across Atlassian instance.
  2. Step by step setup guides for 20+ IDPs.
  3. Full Control on Login flow.
  4. Support for Encryption and Signing of SAML Request and Response.
  5. Enable SSO for the internal and external domains of the Atlassian application.

Usecases Achieved by miniOrange SAML SSO for Data Center Apps

  1. Force SSO to only specific users

    Enable SSO for only a particular set of users and allow other users to log in using local credentials. With this, you can restrict SSO based on user's email domain, groups and also based on their directories.

  2. Enable SSO for Employees and not for Customers

    We provide options to even enable SSO for only a particular set of users and allow other users to log in using local credentials. With this you can manage both your internal and external users. But with Atlassian SSO2.0 application you can only enable SSO for all the users, there is no provision to enable it for a set of users.

  3. Complete Control Over Login Flow

    With our add-on, you get full control over the login flow of your users. You can decide where your users will be redirected for login and you can change the look and feel of the login page also.

Limitations of Atlassian SSO 2.0 app

  1. No Support for Advanced SSO and Security Features

    Atlassian SSO 2.0 application only provides the basic Single Sign-On using SAML Protocol. It does not provide any extra security to your SSO flow.
    On the other hand, miniOrange SAML SSO plugins for Data Center are rich in both authentication and security features.

Benefits of using miniOrange SSO plugin over Atlassian SSO

Multiple IDPs Support

With miniOrange plugin you can configure more than one Identity Providers. So even if your users are scattered across many Providers, you can allow all of them to Login to Atlassian application using via SSO using miniOrange plugin.

  1. Configure SSO for Multiple tenants in Azure
  2. Configure SSO for user in Multiple Realms in Keycloak
  3. Different IDPs for different customer portals
  4. One IDP for Internal users and one for External users
Share user information (Attribute Mapping)

Maintain the same user attributes across your IDP and your Atlassian applications through SSO. With attribute mapping options, profile attributes such as email are updated in the Atlassian applications as per user profile on IDP when the user logs in via SSO.

Permission Management to Atlassian Application (Group Mapping)

You can restrict user access to Atlassian applications by assigning them to groups with required application access permission. We provide various options such as Just In Time provision for a seamless experience.

Advanced Security Features

To increase the security of your SSO flow, you can use our signing and encryption features. With these options, you can ensure that no one else gets access to the sensitive user information received from the IDP.

Feature Comparison


Feature Details miniOrange SAML Data Center SSO Apps Atlassian SSO 2.0 app
Single Sign-On features
Basic Single Sign-On Support for basic SSO with IDP
Support for 20+ IDPs Provides support and setup guides for all known IDPs
Import metadata Quick plugin setup by importing IDP metadata using file/URL
Test configuration Provision of testing the configuration before rolling out for your users
Certificate Rollover Automatic Sync of IDP Certificates for encryption and signing
NameID format Provision to select the NameID format
Download SP Metadata Quick setup at IDP using SP metadata file/URL
Configurable SP URLs Provision to change the SP URLs in case a proxy is configured
Security features
Encryption Provision to Encrypt and Decrypt SAML requests and responses
Signed Requests Provision to send signed SAML requests to prevent request forging
(For eg., by the man in the middle attack)
Custom Certificates Provision to configure your own certificates and to generate certificates from the plugin.
User and groups Provisioning
User Profile Attributes Sync Support to map user profile attributes to keep the user information on Atlassian application in sync with IDP
Login Attribute Option to choose either the Email address or Username as login attribute
Regex for username Use regex to extract username from any attribute (For eg., email)
Permission Management Manage users permissions by assigning groups with application permissions to users on SSO
Group Mapping Provision to map groups from IDP to local groups
On The Fly Group Mapping Synchronize users groups from IDP to Atlassian application on SSO
Redirection Rules
Force Authentication Auto Redirect to Identity provider for Login
Emergency/Backdoor URL To allow Atlassian application login page access to a specific set of users (mostly admins)
Look and Feel
Custom Templates Provision to customize the Login and Error Pages
Custom logout Provision to customize the Logout Pages and provision to configure a logout URL
Other Features
Remember Login Feature to remember a user login to avoid multiple logins on the same device
Import/Export plugin configurations Easy to migrate to a new instance. (For eg., Staging to Production instance)
Disable Password Reset Feature to remove the ability from users to reset the password of Atlassian Application
Auto Activate Users on SSO Provision to allow auto activation of users that are deactivated on Atlassian application at the time of SSO
Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com