Configure provisioning for Atlassian with Zoho Directory

Configure provisioning for Atlassian with Zoho Directory

User provisioning with Atlassian enables you to provision and deprovision users in Atlassian from the Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of truth. To get the most out of this integration, you can also set up single sign-on (SSO). SSO allows your organization's users to easily access Atlassian without having to sign in to it separately.

Prerequisite

  1. Roles required to perform this action:
    1. Organization Owner
    2. Organization Admin
  2. Permissions required to perform this action:
    1. View apps
    2. Assign apps
    3. Import users
  3. Other prerequisites
    1. A verified domain in Atlassian
    2. An Atlassian Access subscription
    3. Admin role in at least one Jira or Confluence site

In Atlassian: Enable SCIM and generate token

  1. Sign in to your Atlassian admin console. If you have more than one organization, select one.
  2. Go to Security, then click Identity providers.
  3. Click Add identity provider.
  4. Select "Other Provider" under Identity Provider, and enter "Zoho Directory" in the Directory Name field, then click Add.
  5. Click Set up user provisioning, then click Next.
  6. Copy the SCIM base URL and the API Key. They will be used in Zoho Directory to set up provisioning.
  7. Click Next.
  8. Click Stop and save SCIM configuration.
  9. Go to Settings, then click Domains.
  10. Add and verify a domain that has also been verified in Zoho Directory.
  11. Go back to the Identity Providers screen, and click on the identity provider you just added.
  12. Click View domains, then click Link domain.
  13. Select the domain you just added, then click Next.
  14. Click Move domains.

In Zoho Directory: Set up provisioning

  1. Sign in to Zoho Directory , then click Admin Panel.
  2. Go to Applications, then click on Atlassian.
  3. Go to Provisioning, then click Configure.
  4. Enter the SCIM base URL and the API Key you copied from Atlassian in the Sync endpoint and SCIM Token fields.
  5. Click Authorize.
  6. Select the fields that have to be synced with Atlassian, and map a relevant Zoho Directory field with them. If you'd like to have a constant value to be set in Atlassian for any field, click Edit next to the field, enter the value in the Hardcoded value field, then click OK.
    7. Notes Note: By default, all Atlassian fields will be mapped to a relevant Zoho Directory field. To change this mapping, you should have the Standard or Professional plans in Zoho Directory.
  7. Click Save and Next.
  8. Choose which of the changes made in Zoho Directory have to be synced with Atlassian:
    1. Create users: Assigning a user to Atlassian in Zoho Directory automatically creates a new user account in Atlassian.
    2. Update User profile: If a user account already exists in Atlassian for a user, any changes made to the mapped fields in the user's profile in ZD will be synced with Atlassian.
    3. Delete Users: Unassigning Atlassian for the user from ZD will delete the user's account in Atlassian.
    4. Activate and deactivate Users: If a user account already exists in Atlassian for a user, assigning them to Atlassian in ZD or unassigning them will activate or deactivate the user in Atlassian. Additionally, activating or deactivating a user in ZD will also activate or deactivate them in Atlassian.
  9. Click Save.
  10. If you'd like to have the users currently in Atlassian to be imported to ZD, click Import. It is advisable to import users to ZD during initial setup or when activating the app after a while. A list of users that can be imported will be displayed.
  11. The following filters can be used to select users to import:
    1. All Users: All the users that can be imported from Atlassian to ZD.
    2. New Users: Users that are present in Atlassian, but not in ZD. These users will be created in ZD, and Atlassian will be assigned to them.
    3. Update User: Users already present in ZD. Any changes in the user profile for these users will not be synced, and the field values from Atlassian will be used to overwrite the values in ZD.
    4. Users to Activate: Users in ZD, but not assigned to Atlassian in ZD. These users will be assigned to Atlassian.
    5. Users to Deactivate: Users that are either not present or present as inactive users in Atlassian. These users will be unassigned from Atlassian in ZD.
  12. Click Confirm Assignment.
  13. Click Done.