Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Jira, Confluence , and Bitbucket offer “anonymous users” anonymous users to view public content without having an authenticated session.

In adddition Kantega SSO Enterprise provides the ability to require users to authenticate with their identity provider, using SSO, to access anonymous content in Jira and ConfluenceEnable SSO-Verified Anonymeos Access to allow users who do not have Jira or Confluence accounts to access JIRA/Confluence anonymously while still benefiting from the security features of Single Sign-On. This enables your organization to save on license costs while maintaining secure access to all your content.

SSO-verification means that the users are not accessing Jira or Confluence truly anonymously since their identity is known. A session cookie is created the same way as in a regular login, except that the session is not related to a local user in the host product. With this feature enabled, it's important to note that truly public content is restricted. Accessing any content now mandates users to have an active session, ensuring a more controlled and secure environment.

Configure

Enable

Enable SSO-verified Anonymous Access in KSSO

  1. Select Identity Providers in the KSSO menu. The Identity Provider overview page is shown.

    Skjermbilde 2024-08-21 kl. 15.23.04.pngImage Added

  2. Choose the Identity provider you want to configure, then select SETTINGS → SSO-Verified

...

  1. Anonymous Access. Enable the switch SSO-verify anonymous access.

    Skjermbilde 2024-08-21 kl. 14.41.08.pngImage Added

  2. As pointed out in the above screen, Anonymous access must be enabled in the Atlassian product (here JIra or confluence) for this feature to work. Open administration of Permission schemes in your product and check that Anonymous access is enabled.

    Example: In Jira, grant permissions to group, Anyone on the web to allow anonymous access

...

Configuring related settings in Kantega SSO Enterprise

As shown in the screenshot above, the The Just-in-time provisioning settings affect how Authenticated Anonymous Acess works since both features are related to the presence of user accounts. If Just-in-time provisioning is set to create users, this will take precedence over anonymous access.

...