SAML SSO Documentation

Comprehensive SAML SSO Setup Guides to Get Started

Jira icon


Confluence icon


Bitbucket icon


Bamboo icon


Fisheye icon


App Resources: Explore Blogs and Handbooks

SAML SSO Video Guides

Frequently Asked Questions

  • What are the steps to install the Atlassian plugin?

    Here are the steps to install and apply evaluation license to the Atlassian plugins. Launch your Atlassian application and log in. Access the administration section.

    Know More

  • How can I generate a certificate for the SAML app?

    The certificate for the SAML app has to be a SHA256 base certificate. You can generate a new certificate via OpenSSL (if you don’t have already) and configure it in the plugin’s Custom Certificate tab. This will overwrite the default certificate of the app.

    Know More

  • When using multiple IDPs(SAMLs Only), How do users choose IDP(Okta or Entra ID (Previously known as Azure AD))?

    There are two ways to choose IDP:

    1. Once the multiple IDPs are configured in the plugin. The drop-down list appears on the login page at the time of SSO. This list contains name of all the configured IDPs. You can select your IdP from the list and enter credentials for the same to perform login.
    2. When more than one IDPs are configured in the plugin, Domain Mapping option enables. Using this option you can set domain of the IDP you want to perform Signle Sign-On with. At the same time you can configure more than one IDP domain also. It will redirect to the IDP based on the domain name you entered for the login.

    Suppose you configured okta and azure domains in the domain mapping fields.

    Domain mapping :
    Domain Mapping :

    On SSO it will ask to enter the username. If your username contains okta( domain it will redirect to okta idp and you need to add username and password for the same IDP to perform sso.

    Know More

  • How to update SAML Certificate of miniOrange Plugin?

    If you see the warning notification above, it indicates that the plugin’s certificate is going to expire in the next few days. This certificate is used to sign SAML authentication requests and encrypt/decrypt SAML responses from the IDP. You may ignore the warning if you are not using the abovementioned configuration, however, it is recommended that you update the certificate by configuring your own X.509 certificate or generating a new one directly from the plugin.

    Know More