This page contains information about how to setup Azure AD and User Sync for Atlassian Server or Data Center applications.
When you encounter different wording, please contact us and we will update the documentation.

Quickstart guide

Go to, click "Azure Active Directory" in the left panel and then choose "App registrations".

  1. Click on "New registration"
  2. Enter a "Name" for the app.
  3. Click on "Register".
  4. On this page you can see the "Application ID" and the "Directory (tenant) ID". You will need both to setup the Azure AD connector in User Sync.
  5. Click on "API permissions" in the left panel.
  6. Click on "Add a permission" and choose "Microsoft Graph".
  7. Click on "Application Permissions".
  8. Search for the "Directory" entry, expand it and tick "Directory.Read.All".
  9. Click on "Add permissions" to add the permissions.
  10. Click on "Grant admin consent for ...".
  11. Next, click on "Certificate & secrets".
  12. Add a new Client secret by click on "New client secret".
  13. Enter a description, and choose "Never" for "Expires". Click on "Add".
  14. Copy the secret now ("VALUE"). You are not able to see it again after leaving that page. Please paste it to a text editor for the tutorial.

Now it is time to configure UserSync in your Atlassian Server or Data Center product. Please keep the Azure website open, because we will need it later on.

  1. Now, go back to your Atlassian Server or Data Center product, and go to the UserSync Configuration.
  2. Click Add Connector and choose Azure Connector.
  3. First, paste the client secret (which you copied before) into the Application Secret.
  4. Next, go back to the Azure website and click Properties in the app you have created for UserSync. Copy the Application ID and Directory (Tenant) ID and paste them into the UserSync configuration in your Atlassian product.
  5. In the UserSync configuration, activate Enable Scheduled Synchronization. You can provide a Cron expression to set a synchronisation interval.

User guide 

Go to and click Azure Active directory.

In the Azure Active directory, click App registrations.

Click New registration to create a new app.

Enter a name for your application and click on Register to proceed.

Click API permissions in the left panel and then on Add a permission.

Select Microsoft Graph.

Choose Application permissions.

Expand Directory and tick Directory.Read.All

Click on "Grant admin consent for ...".

For the next step, click on Certificates & secrets in the left panel, and then click on New client secret.

Enter a description for the secret and also set an expiry date. Click on Add to confirm.

Your Client secret will displayed only once, thus copy the secret. Of course it is possible to create a new secret, if you lost your secret.

Go overview page of the Azure AD app. Copy the Application ID and the Directory (tenant ID). Now, it is time to head over to your Atlassian application.

In your Atlassian application, go to UserSync,  click Add Connector and choose Azure Connector.

Insert the Application ID, Directory ID and the Application secret into the UserSync connector.

To take the full advantages of User Sync, scroll down and tick "Enable Scheduled Synchronization". You can control the sync interval via a Cron Expression.
Do not forget to save your configuration. Scroll down to the bottom of the page and hit "Save".

Screenshot 2019-03-28 at 13.55.14.png

You are now ready to toggle a full sync. Simply click the "Sync" button.