miniOrange stands as a reputed partner and provider of security and SSO solutions for multiple platforms within the industry. Built on a strong foundation of security fundamentals, we provide secure and reliable Identity and Access Management (IAM) solutions that integrate seamlessly with the customer's existing frameworks. We provide SSO solutions for all the Atlassian applications using protocols like SAML, OAuth 2.0, OIDC, etc. SSO enables users to securely authenticate with multiple applications by logging in only once - with just one set of login credentials.
Both miniOrange and Atlassian provide SAML SSO feature in all Atlassian host applications. miniOrange SAML SSO apps are rich in features and very easy to setup. You can see a comparison of features of Atlassian SSO2.0 and miniOrange SAML Data Center SSO apps below.
miniOrange SAML SSO Apps for Data Center
Why miniOrange?
Free Installation and Setup
We provide help in installation and setup of the entire plugin
Advanced features
We provide advanced Single Sign-On and Security Features
World Class Support
We provide dedicated support for every query with quick response
Fit for every use-case
Built over 3+ years with feedback from customers to fit real world usecases
miniOrange SAML SSO Data Center App Unique Features
- Sync user information across Atlassian instance.
- Step by step setup guides for 20+ IDPs.
- Full Control on Login flow.
- Support for Encryption and Signing of SAML Request and Response.
- Enable SSO for the internal and external domains of the Atlassian application.
Usecases Achieved by miniOrange SAML SSO for Data Center Apps
- Force SSO to only specific users
Enable SSO for only a particular set of users and allow other users to log in using local credentials. With this, you can restrict SSO based on user's email domain, groups and also based on their directories. - Enable SSO for Employees and not for Customers
We provide options to even enable SSO for only a particular set of users and allow other users to log in using local credentials. With this you can manage both your internal and external users. But with Atlassian SSO2.0 application you can only enable SSO for all the users, there is no provision to enable it for a set of users. - Complete Control Over Login Flow
With our add-on, you get full control over the login flow of your users. You can decide where your users will be redirected for login and you can change the look and feel of the login page also.
Limitations of Atlassian SSO 2.0 app
- No Support for Advanced SSO and Security Features
Atlassian SSO 2.0 application only provides the basic Single Sign-On using SAML Protocol. It does not provide any extra security to your SSO flow.
On the other hand, miniOrange SAML SSO plugins for Data Center are rich in both authentication and security features.
Benefits of using miniOrange SSO plugin over Atlassian SSO
Multiple IDPs Support
With miniOrange plugin you can configure more than one Identity Providers. So even if your users are scattered across many Providers, you can allow all of them to Login to Atlassian application using via SSO using miniOrange plugin.
- Configure SSO for Multiple tenants in Azure
- Configure SSO for user in Multiple Realms in Keycloak
- Different IDPs for different customer portals
- One IDP for Internal users and one for External users
Share user information (Attribute Mapping)
Maintain the same user attributes across your IDP and your Atlassian applications through SSO. With attribute mapping options, profile attributes such as email are updated in the Atlassian applications as per user profile on IDP when the user logs in via SSO.
Permission Management to Atlassian Application (Group Mapping)
You can restrict user access to Atlassian applications by assigning them to groups with required application access permission. We provide various options such as Just In Time provision for a seamless experience.
Advanced Security Features
To increase the security of your SSO flow, you can use our signing and encryption features. With these options, you can ensure that no one else gets access to the sensitive user information received from the IDP.
Feature Comparison
| Feature | Details | miniOrange SAML Data Center SSO Apps | Atlassian SSO 2.0 app |
| Single Sign-On features | |||
| Basic Single Sign-On | Support for basic SSO with IDP | ||
| Support for 20+ IDPs | Provides support and setup guides for all known IDPs | ||
| Import metadata | Quick plugin setup by importing IDP metadata using file/URL | ||
| Test configuration | Provision of testing the configuration before rolling out for your users | ||
| Certificate Rollover | Automatic Sync of IDP Certificates for encryption and signing | ||
| NameID format | Provision to select the NameID format | ||
| Download SP Metadata | Quick setup at IDP using SP metadata file/URL | ||
| Configurable SP URLs | Provision to change the SP URLs in case a proxy is configured | ||
| Security features | |||
| Encryption | Provision to Encrypt and Decrypt SAML requests and responses | ||
| Signed Requests | Provision to send signed SAML requests to prevent request forging (For eg., by the man in the middle attack) |
||
| Custom Certificates | Provision to configure your own certificates and to generate certificates from the plugin. | ||
| User and groups Provisioning | |||
| User Profile Attributes Sync | Support to map user profile attributes to keep the user information on Atlassian application in sync with IDP | ||
| Login Attribute | Option to choose either the Email address or Username as login attribute | ||
| Regex for username | Use regex to extract username from any attribute (For eg., email) | ||
| Permission Management | Manage users permissions by assigning groups with application permissions to users on SSO | ||
| Group Mapping | Provision to map groups from IDP to local groups | ||
| On The Fly Group Mapping | Synchronize users groups from IDP to Atlassian application on SSO | ||
| Redirection Rules | |||
| Force Authentication | Auto Redirect to Identity provider for Login | ||
| Emergency/Backdoor URL | To allow Atlassian application login page access to a specific set of users (mostly admins) | ||
| Look and Feel | |||
| Custom Templates | Provision to customize the Login and Error Pages | ||
| Custom logout | Provision to customize the Logout Pages and provision to configure a logout URL | ||
| Other Features | |||
| Remember Login | Feature to remember a user login to avoid multiple logins on the same device | ||
| Import/Export plugin configurations | Easy to migrate to a new instance. (For eg., Staging to Production instance) | ||
| Disable Password Reset | Feature to remove the ability from users to reset the password of Atlassian Application | ||
| Auto Activate Users on SSO | Provision to allow auto activation of users that are deactivated on Atlassian application at the time of SSO | ||
