Tailored Jira and Confluence SSO for BMW
Effortless Custom Redirection Upon SSO and Restricting SSO based on Username’s
Know MoreminiOrange OAuth/OIDC App
Single Sign On and User Identity that’s easy to use
100%
Secure Authentication
54+
Integrated Add-Ons
Client Overview
BMW (Bayerische Motoren Werke) is a global leader in luxury automobiles and motorcycles, celebrated for its precision engineering, performance-driven design, and innovation. Founded in 1916, the brand has evolved from aircraft engines to iconic vehicles like the 3 Series, 5 Series, and X Series SUVs.
Today, BMW continues to drive the future with its i-Series and hybrid models, combining sustainability with signature driving excellence.
The Challenge
BMW needed a more controlled and customized Single Sign-On (SSO) experience for their Jira and Confluence users. Specifically, they wanted to:
- Restrict SSO Access: Allow only specific users to log in via SSO, without having any pre-defined user groups or identifiers. To achieve this, they required the ability to apply regular expressions (regex) on usernames—permitting only those that matched the pattern to authenticate via SSO.
- Post-SSO Redirection: Automatically redirect new and reactivated users to a custom dashboard after SSO login, ensuring they could update essential details before proceeding.
These requirements called for a flexible, rules-based approach to access control and post-login behavior within their existing SSO setup.
Solutions we provided to BMW
OAuth/OIDC SSO
We made it possible for BMW to decide which users could use SSO based on patterns in their usernames, instead of having to organize everyone into specific groups. This gave them much more flexibility. We also set things up so that any new or reactivated users would automatically be taken to a special dashboard after logging in. There, they could fill in important details before moving on.
How It Works
The miniOrange SSO solution for BMW was designed with precision and flexibility in mind:
- Regex-Based Access Control: Administrators can define regular expression (regex) patterns to control which users are allowed to log in via SSO. This enables dynamic access management without the need for predefined user groups.
- Targeted Post-Login Redirection: New and reactivated users are automatically redirected to a custom dashboard after successful SSO. This ensures that users complete any necessary updates before accessing Jira or Confluence.
Together, these capabilities deliver a secure, seamless, and user-specific SSO experience tailored to BMW’s unique operational requirements.
Key Benefits
- Dynamic Access Management: Regex-based filtering offers highly customizable control without the overhead of group assignments.
- Scalability & Performance: Seamless handling of large user sets and group structures, supporting Just In Time provisioning with no delays.
- Enhanced User Accountability & Security: Controlled SSO access reduces the risk of unauthorized entry and aligns with enterprise-level security protocols.
- Flexible, Admin-Friendly Configuration: Easy rule-based setup means less manual work for admins and quicker deployment of authentication policies.
miniOrange provided BMW with a tailored solution backed by continuous, high-touch support, ensuring smooth implementation and minimal disruptions. Our team was readily available to assist in real-time, and BMW appreciated the responsive collaboration and overall user experience. This successful partnership highlights the impact of personalized solutions and our ongoing commitment to supporting BMW’s future initiatives.
