Note : The information contained on this page does not create a joint venture, partnership, agency or other form of association, or an express or implied license grant by either party to the other under any patent, trademark, copyright, trade secret or other intellectual property right.

Atlassian JIRA Server

miniOrange provides secure access to Jira for enterprises and full control over access of applications, Single Sign On (SSO) into Jira with one set of login credentials.

• Single Sign On

  miniOrange Single Sign On (SSO) Solution provides easy and seamless access to all enterprise resources with one set of credentials. miniOrange provides Single Sign On (SSO) to any type of devices or applications whether they are in the cloud or on-premise.

• Strong Authentication

  Secure your Wordpress site from password thefts using multi factor authentication methods with 15+ authentication types provided by miniOrange. Our multi factor authentication methods prevent unauthorized users from accessing information and resources having password alone as authentication factor. Enabling second factor authentication for Wordpress protects you against password thefts.

• Fraud Prevention

  miniOrange prevents frauds with its dynamic risk engine in conjunction with enterprise specific security policy. We support a combination of the Device Id, Location and Time of access as multi-factor authentication that can detect and block fraud in real-time, without any interaction with the user.

miniOrange supports both SAML based Single Sign On into Jira. This guide explains SAML based Single Sign On into Jira.

In SAML SSO, miniOrange supports both IdP (Identity Provider) and SP (Service Provider) initiated Single Sign On (SSO) for Jira.

• IdP Initiated Single Sign On (SSO)

  In IdP Initiated Login, SAML request is initiated from miniOrange IdP.

• Enduser first authenticates through miniOrange Idp by login in to miniOrange Self Service Console.
• On landing page, there is a Jira icon, when the enduser clicks on the icon he will be redirected to his Jira account – there is no need to login again.

• SP Initiated Single Sign On (SSO)

  In SP Initiated Login, SAML request is initiated from Jira server.

• An enduser can login to Jira Account by going to your SAML authentication endpoint. Eg. https://<YOUR_JIRA_DOMAIN>/plugins/servlet/saml/auth
• They will be redirected to miniOrange Self Service Console.
• Here he can enter the login credentials and login to his Jira Account.

In order to setup SSO, you need to follow these 7 steps:

• Configure Single Sign-On Settings in Identity Provider (miniOrange is used as Identity Provider for this guide)
• Create a policy for Jira app in miniOrange
• Onboard users into our system
• Register users into our system (End Users)
• Installing and Configuring the plugin

Follow the Step-by-Step Guide given below for Atlassian JIRA Server Single Sign On (SSO) using SAML

Step 1: Configure Single Sign-On Settings in Identity Provider

• We will be using miniOrange as Identity Provider for this guide. For your IDP specific guides, contact us at info@miniorange.com.
• Login as a customer from Admin Console of miniOrange's Administrator Console, now go to Apps tab from menu and select Configure Apps.
• In SAML tab, search for Jira (SAML), select it and click on Add App.



• Provide a name for this application.
• Enter the SP Entity ID as <YOUR_JIRA_BASE_URL>. Example, https://jira.example.com
• Enter the ACS URL as <YOUR_JIRA_BASE_URL>/plugins/servlet/saml/auth. Example, https://jira.example.com/plugins/servlet/saml/auth
• Click on Save to configure the Jira SAML Application.



• Download the certificate which you will need later while configuring the plugin.

Step 2: Create a policy for Jira application in miniOrange

• Login as a customer from Admin Console of miniOrange's Administrator Console, go to Policies tab from menu and select App Authentication Policy.
• Add a new policy for Wordpress.
  • Select Jira application from Application dropdown.
  • Select a Group Name from dropdown - the group for which you want to add Jira app policy.
  • Give a policy name for Jira app in Policy Name field.
  • Select the First Factor Type for authentication.
  • Enable Second Factor for authentication if required.
  • Click on Save button to add policy for Jira SAML Single Sign On (SSO).



• Now click on Onboard users into our system from View Policy Tab.

Step 3: Onboard users into our system

• Download sample csv format from our console and create a CSV file containing your users in this format.



• Upload your CSV in our console via Bulk Upload.
• After uploading the CSV file successfully, you will see a success message.
• From Users/Groups menu, select Manage Users/Groups and go to OnBoarding Status. Select users to send activation mail and click on send activation mail. An activation mail will be sent to the selected users.

Step 4: Register users into our system (End Users)

• Sign In to your mail and click on registration link that is valid only for 5 days. You will be redirected to our registration page.
• Configure your basic details.



• Configure any strong authentication method.



• Configure KBA (Security Questions) as your fallback method, in case you lost your phone this will get invoked and save your details.



• After successful registration, you will see a registration successful message.

Step 5: Installing and Configuring the plugin

• Download the SAML 2.0 Single Sign-On plugin for JIRA from the Atlassian Marketplace.
• In the Jira admin consle, go to System settings. Under the security, select SAML SSO Configuration.



• Provide the required settings (i.e. Entity ID, Single SignOn Service Url, Certificate Fingerprint) and save it.

  Entity ID	https://auth.miniorange.com/moas
  Single Sign On Url	https://auth.miniorange.com/moas/idp/samlsso
  X.509 Certificate	Open the certificate in Notepad and copy/paste the entire content here.
  Username Attribute	Enter the Attribute Name that contains JIRA Username. Use NameID if username is in Subject element..
  Email Attribute	Enter the Attribute Name that contains JIRA Username. Use NameID if Email is in Subject element.

To test the authentication, open a new Private browsing window (Incognito window) and go to <JIRA_BASE_URL>/plugins/servlet/saml/auth. Eg. https://jira.example.com/plugins/servlet/saml/auth

Business trial for free

If you don't find what you are looking for, please contact us at info@miniorange.com or call us at +1 978 658 9387 to find an answer to your question about Wordpress Single Sign On (SSO).