SAML Single Sign-OnSAML Single Sign-On
Try For Free

JumpCloud With Manual Provisioning

Goal

After completing this setup guide, you will have a setup for JumpCloud as Identity Provider with Manual Provisioning and your Atlassian product for the SAML SSO app. Additionally, you will enable the SSO redirection and test SSO.

Prerequisites

To use the SAML SSO app with JumpCloud, you need the following:

  • A JumpCloud admin account

  • A (trial) subscription for the SAML SSO app

  • Admin access to your Atlassian product

Step-By-Step Setup Guide

Install The SAML SSO App

In your Atlassian product, open the in-product marketplace as described in the Atlassian documentation.
Search for "resolution saml" and click "Install" for SAML Single Sign On (SSO) by resolution Reichert Network Solutions GmbH


After the installation is complete, click on "Manage", then choose "Configure". 

Now, you are on the Add-on/app configuration page, and the first step of the setup wizard will appear.

Install-25-loop.gif


First Steps - Wizard

After you click "Configure", the Wizard will be triggered. If not, or if you want to add another Identity Prover (IdP) to your existing configuration, click on "+ Add IdP". This guide assumes, that there is no IdP configured.
The Wizard greets you with information, click on "Add new IdP" to proceed.

welcome.png


For the IdP Type, choose "Other SAML Identity Provider", and enter a name in the Name field.

You can also enter a description, but it's not mandatory. Click on "Next" to continue.

Screenshot_2020-02-19_at_2_16_01_PM.png


Right-click on the URL in the Metadata URL field, and download the metadata XML file.

In the next step, you will configure JumpCloud Identity Provider. Please keep this tab open or copy the information.

Screenshot_2020-02-19_at_2_16_16_PM.png


Configure JumpCloud As IdP For SAML SSO

Navigate to the "Applications" page, and click on the + button to configure a new application.

Choose the "Custom SAML App", which should be the first option in the app list, and click on the "configure" button.

Screenshot_2020-02-19_at_2_14_41_PM.png


In the "Display Label" field, add a name for your application.

Click on the "Upload Metadata" button in the "Service Provider Metadata" field, and upload the metadata XML file that you've downloaded earlier from the plugin.

Screenshot_2020-02-19_at_3_16_46_PM.png

Please note that after uploading the metadata XML, the content (SP Entity ID, ACS URL,...) will not be displayed in the current window until you click on the activate button, which we're going to do later after completing the other required fields.


You should see a notification popup when the metadata is uploaded and read successfully.

Screenshot_2020-02-19_at_3_17_28_PM.png


Enter the "IdP Entity ID": https://sso.jumpcloud.com

Screenshot_2020-02-19_at_3_17_52_PM.png


In the "SAMLSubject NameID" field, choose "username" from the dropdown list.

Keep the "SAMLSubject NameID Format" with the default option chosen: "urn:oasis:names:tc:SAML:1.0:nameid-format:unspecified".

Screenshot_2020-02-19_at_3_18_14_PM.png


In the "IdP URL" field, enter a unique name in the text field, so it would be the unique IdP URL for this application.

Then click on the "activate" button.

Screenshot_2020-02-19_at_3_18_35_PM3.png


You will get a confirmation popup as follows. Click on the "continue" button.

Now you will see the fields populated with the service provider metadata that you've uploaded earlier.

Click on the "export metadata" link to download the IdP metadata XML file. 

Screenshot_2020-02-19_at_3_21_38_PM.png


Ensure that the users' group is bound to the application you've just created and activated.

Go to the group settings, click on the "Applications" tab, and ensure your application is enabled here.

Then click on the "save group" button.

Screenshot_2020-02-19_at_3_22_42_PM.png


The configuration in JumpCloud is now finished. In the next step, we will finish the configuration in the SAML SSO wizard.


Finishing The Configuration - Wizard

Choose "I have a metadata XML file" from the dropdown list of the "Metadata Upload" field.

Click on the "Select metadata XML File" button, and choose the metadata XML file that you've exported from JumpCloud.

Screenshot_2020-02-19_at_3_25_04_PM.png


Click on "Next".

Screenshot_2020-02-19_at_3_25_08_PM.png


For the User Update Method, leave it in "No User update" option as per the default.

Click on Save & Next button.

Screenshot 2020-01-28 at 2.40.16 PM.png


Testing SSO

The wizard also allows testing the Single Sign On. Just follow the steps to test if the login works as expected.

Click on "Start test" to proceed.

Screenshot_2020-02-19_at_3_26_56_PM.png


Copy the red marked link, and open a new incognito/private tab or a different web browser. Then, paste the link and navigate to it.

Screenshot_2020-02-19_at_3_27_09_PM.png


You should be redirected to JumpCloud login page. Enter your SSO credentials to proceed.

Screenshot 2020-02-19 at 3.29.05 PM.png
Screenshot_2020-02-19_at_3_28_45_PM.png



If everything works fine, you will be logged into your Atlassian product. In the other tab/browser in which you were configuring the SAML SSO plugin, you can also see the "SUCCESS" status.

Click "Next" to proceed.

Screenshot_2020-02-19_at_3_29_39_PM.png


SSO Redirection

As a last step, you can set the "Enable SSO Redirect" option. If set, all users will be redirected to Single Sign On, thus they will be logged in via the IdP.

Click on "Save & Close" to finish the configuration.

Screenshot_2020-02-19_at_3_29_52_PM.png

This site uses cookies to deliver its service & to analyse traffic. By browsing this site, you accept the privacy policy.

Our Wiki uses cookies

We want to give you the best possible experience on our website. For this we use technically required cookies and, if you agree, cookies for analysis and marketing purposes. You can find more information about the cookies in our Privacy Policy. By tapping ‘Accept All,’ you consent to the use of these methods by us and third parties.

Necessary
Always Active
Analytics
Advertisement
Other