How Trimble Secured Jira Access via Okta-Only Authentication with miniOrange SSO
Trimble, a global leader in geospatial and construction technologies, secured its Jira environment by enforcing strict SSO-based access using miniOrange’s SAML SSO solution. The company completely blocked local logins and streamlined user authentication through Okta, its centralized identity provider.
Trimble’s Business Challenge
Trimble needed a way to strictly enforce Okta-based authentication for all Jira users, eliminating any possibility of logging in with local credentials.
Blocking Local Jira Access: Trimble’s Challenge
Trimble manages all organizational users through Okta, its enterprise Identity Provider (IdP). With thousands of users relying on Jira for daily projects and support tasks, Trimble wanted to ensure a uniform login experience through Okta — with no exception.
Key goals included:
- Enforcing SSO login for all Jira users via Okta
- Preventing bypass through Jira local accounts or password resets
- Reducing administrative overhead by keeping user management centralized in Okta
Although Jira Server does not natively support SAML SSO, Trimble needed a secure and reliable way to integrate it with Okta and ensure zero fallback to local login options.
How miniOrange Helped Solve Trimble’s Challenge
miniOrange delivered a tailored solution using its Jira SAML SSO plugin that enforced redirection to Okta and disabled local login fallback, helping Trimble achieve total control over authentication.
Enforcing Okta-Only SSO with Redirection & Password Controls
To enable strict SSO enforcement, miniOrange implemented the following within its SAML SSO add-on for Jira Server:
- SSO Redirection Enforcement: Users accessing Jira are automatically redirected to Okta for authentication. Local login screens are skipped entirely, making SSO the only available login method.
- Local Password Reset Lockdown: The add-on disables Jira’s native “Forgot Password” functionality — both from the login page and user profile — preventing users from setting or using local credentials.
- Zero Local Password Provisioning: When users are created via SSO, no local Jira password is generated. Even if users attempt to bypass SSO, they cannot log in directly.
Together, these configurations ensured that Jira access could only be granted through authenticated sessions from Okta, effectively eliminating unauthorized or alternate login routes.
Success Outcome: SSO-Only Login Across Jira Server
With miniOrange’s plugin in place, Trimble successfully secured Jira Server with Okta SSO. The admin team no longer had to worry about users bypassing authentication, reducing their security risk and support workload.
Benefits included:
- Seamless login experience across the organization
- Centralized access control from Okta
- No possibility of local password-based access
- Reduced helpdesk requests related to password resets or lockouts
The solution allowed Trimble to maintain a consistent and secure login policy across all departments using Jira.
Results & Business Impact
The implementation of miniOrange SAML SSO for Jira Server helped Trimble:
- Eliminate Local Login Risks: All access is now routed through Okta SSO only
- Cut Admin Overhead: No more manual user or password management inside Jira
- Improve Compliance: Stronger identity assurance aligned with enterprise IT policies
- Standardize User Experience: Users authenticate once through Okta for all systems
About Trimble
Trimble Inc. is a global technology company headquartered in California, serving industries such as agriculture, construction, geospatial, and transportation. Known for its cutting-edge hardware and software products, Trimble empowers professionals to transform workflows through real-time data and automation.