Prerequisites

Please note that Organizations are only available for Jira Service Management (JSM). Organizations are groups of customers that can be associated across multiple projects. By adding an organization to a project, its members gain the ability to raise requests within the project and share these requests with others in the same organization.

Starting with SAML SSO version 2.2.0, Service Desk customers can now be automatically assigned to organizations during SSO.

This only applies to logins with a request-URL containing /servicedesk/customer/portal Should you test your configuration with a login URL not containing the above, neither organizations will be created nor assigned.

You can also enable SSO redirection for customers in the redirection tab of the plugin configuration. The Redirect Jira Service Management Portals section provides options to configure whether users are redirected to the Identity Provider (IdP) when accessing Jira Service Management portals, including: not redirecting any portals, redirecting all portals, redirecting only selected portals, or redirecting all except certain selected portals.

Redirect Jira Service Management Portals



Configuration Guide for Organization Names

You can configure organization names in one of two ways: either by setting them directly in the configuration or by reading them from an attribute in the SAML response.

Reading organizations from SAML response attributes

In the settings (as shown in the screenshots below), you can define a custom attribute to capture the organization name. If the IdP metadata includes organization name claim attributes, these attributes will be available in a dropdown list. If no attributes are available in the metadata, this dropdown will not appear and you can add the Source Attribute Name manualy.

attribute_mapping_organization

source_attribute_organization

Transforming organization names with regular expressions

You can add one or more rules to transform the organization names from the SAML response according to your requirements. In the example below, the term “org” is replaced with “servicedesk”.

Creating organizations with the SAML SSO app

This section describes how to manage the automatic addition of customers to specific organizations during SSO authentication in Jira Service Management. For that to work, an administrator user with “JIRA Service Desk” application access must exist.

Organization creation and service desk projects

As of now, organizations created by the plugin will be assigned to all non-archived service desk projects and only, if the administrator user has access to these service desks. This is usually the case, unless you have a number of administrator users with limited permissions to some of these projects.

There will be more control over automated creation of service desk organizations in a later version of the plugin. If you are using the Adaptavist script runner plugin, you could work around that current limitation already today.

1. Always Add SD Customers to These Organizations

  • Administrators can specify organizations to which all Service Desk (SD) customers will be added during SSO login.
  • These organizations can be predefined and added to the list using the input field. In our example, “Demo Organisation” and “New Demo Organization” can be selected, because both are already existing in our JSM instance.
  • This ensures that customers are automatically grouped under these specified organizations for better management and organization control.

2. Create Organizations If They Do Not Exist

  • Option: There is a checkbox labelled “Create organizations if they do not exist.”
  • Functionality: When this option is selected, organizations mentioned in the SAML response that do not already exist in Jira Service Management will be automatically created.
  • Default Behaviour: If this option is not enabled, users will only be assigned to already existing organizations. Any organization that is not present will not be created, and customers will not be assigned to them.

Organization settings

Delete Organization

You can also remove an organization from a project if you don't want it to be assigned to it, or delete the organization completely. All these actions can be found in the “Customers” section of each Service Desk project.

Remove an organization from a project


Please note, that organizations created with the add-on prior version 2.3.4 were not correctly assigned to the Service Desk projects. You can fix this by manually adding the organization again to your Service Desk project(s).

You'll see that it is already available via autocomplete. As soon as you did this, even the customers assigned to it with a version prior to 2.3.4 will be visible in that organization again.