The SAML Single Sign On plugin for JIRA Data Center allows Single Sign On for the JIRA Service Management Customer Portal (https://<jira-baseurl>/servicedesk/customer/portal). To activate the customer portal redirection, you have to choose one option from the Redirect Jira Service Management Portals dropdown in the SAML SSO configurations under Redirection:

The redirect options listed under the Redirect Jira Service Management Portals are:

• Don't redirect any portals: Users will not be redirected to the Identity Provider (IdP) when accessing any of the Jira Service Management portals.
• Redirect all portals: All users will be redirected to the Identity Provider (IdP) when accessing any Jira Service Management portal.
• Redirect only selected portals: Users will be redirected to the Identity Provider (IdP) when accessing the selected Jira Service Management portals.
• Redirect all except selected portals: Users will be redirected to the Identity Provider (IdP) when accessing any Jira Service Management portal not specifically excluded.

These options allow administrators to control how and when users are redirected to the Identity Provider for authentication when accessing Jira Service Management portals.

For portals with redirection enabled, the /visitportal URL used in the welcome emails is also redirected.

In general, customers can be created and updated during the SSO login, using SAML Attributes received from the Identity Provider (same process for normal users → see Create or update users through SAML Attributes). In addition to the SAML attributes update, customers will also be added to the group specified in the configuration field Always add SD Customers to these groups:

It's not recommended to add SD Customers to a group giving application access (e.g. jira-servicedesk-users), otherwise licences will be consumed for these users.