Confluence SAML Single Sign On app gives you the ability to enable Single Sign-On through SAML 2.0 for Confluence Software. This app is compatible with all SAML 2.0 Identity Providers.
Here is a list of providers we have already tested with: Identity Provider setup
If you don't find your IDP listed and your application supports SAML 2.0 as an Identity Provider, you can follow the guide given below to enable SSO into Confluence using your application.
To configure any Identity Provider's integration with Confluence SAML SSO, you need the following items:
Pre-requisite: You will need SAML information from your IDP to configure this app. Please get SAML metadata from your Identity Provider. If your IDP does not have a metadata URL or XML, please ask for the following information:
|SP Entity ID / Issuer||This value contains unique identifier for your Atlassian application.|
|ACS URL||This is the URL the IdP will return SAML authentication requests to.|
|Single Logout URL||This will terminate all server sessions established via SAML SSO.|
|Audience URI||IdP will prepare SAML authentication requests for.|
|Recipient URL||IdP will return SAML authentication requests to.|
|Destination URL||IdP will return SAML authentication requests to.|
|Certificate||This Certificate is used validate SAML request and used to decrypt encrypted SAML assertions from the IDP.|
Now we will go through the steps to setup Confluence as a Service Provider using miniOrange add-on:
Configure Identity Provider
By Metadata URL:
By uploading Metadata XML file:
IDP Entity ID
Single Sign On URL
Single Logout URL
Configure Multiple Identity Providers
When user logs into Confluence, one of the user’s data/attribute coming in from the IDP is used to search the user in Confluence. This is used to detect the user in Confluence and login the user to the same account.