SAML Single Sign On User Provisioning Overview Current: Provisioning with User Sync Provisioning with User Sync User Sync is a feature of our SAML SSO plugin. It allows to (periodically) sync users from Azure AD, Okta, GSuite, OneLogin and Keycloak to your Atlassian product instance. It also provides functions similar to LDAP and can be used if LDAP is not an option for you.AdvantagesSimilar advantages than LDAPUser Sync has even more advanced functionality:Allows for group transformations. If you have a group at your IdP, but you want to rename it for your Atlassian product, User Sync can do this. E.g. a group called "users" on the Idp side can be transferred to "jira-users" for Jira.Assign local groups automatically. E.g. for a Confluence instance, assign "confluence-users" automatically.Black/White listing. Block certain groups from being synced or only allow special groups to be synced.Use a Cron expression for scheduling a sync.DisadvantagesIn contrast to LDAP, users can not log in with their local password. No passwords will be synced and there is no mechanism for User Sync to ask the IdP to validate the user.It is currently only available for Jira, Confluence, BitBucket and Bamboo. Additionally, only Azure AD, Okta, GSuite, OneLogin and Keycloak are supported as of the time of writing. SAML Single Sign-On is available for Atlassian Server & Atlassian Data Center products. Our Jira Data Center, Confluence Data Center, Bitbucket Data Center, Jira Server, Confluence Server, Bitbucket Server and other apps are all available on the Atlassian Marketplace.