| Section | ||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
General FAQ
How do I set up Identity Federation for AWS?
Please refer to the Installation and Upgrade Guide.
Which Atlassian products are currently supported by Identity Federation for AWS?
Identity Federation for AWS aims to be a cross product solution and currently supports JIRA and Bamboo (see Compatibility Notes for details) - please don't hesitate to get in touch, if you are interested in support for other Atlassian products, we are eager to learn more about your use case and adjusting our respective roadmap accordingly (see below for a notable special case though).
Will Identity Federation for AWS be available for Atlassian Crowd?
Identity Federation for AWS aims to be a cross product solution and Atlassian Crowd would be the most obvious target product for Enterprise deployments. The add-on could work within Crowd in principle, however Crowd currently lacks the Universal Plugin Manager (UPM) and support for selling publishing Crowd add-ons via the Atlassian Marketplace in turn.
This issue is tracked by Atlassian in Support the Universal Plugin Manager in Crowd (CWD-3157), so please add your vote there to increase the priority. Also, don't hesitate to get in touch with us to discuss alternatives.
Does Identity Federation for AWS support SAML?
While we would love to support AWS Identity and Access Management Using SAML, true integration of SAML (Security Assertion Markup Language) is outside of the realm of Identity Federation for AWS, however:
| Tip | ||
|---|---|---|
| ||
That being said, the main use case of this add-on is to provide similar functionality by leveraging the alternative AWS options for Identity Federation - you thereby gain the same benefits of federated access and a unified directory for all Atlassian products via Crowd. |
- True SAML support would best be addressed by Atlassian Crowd itself - a related feature request is tracked by Atlassian in General SAML Support (CWD-1822), so please add your vote there to increase the priority. Also, don't hesitate to get in touch with us to discuss alternatives.
Support FAQ
What is the relation between Identity Federation for AWS 1.x and the Identity Federation for AWS 2.x series?
Identity Federation for AWS 2.0 for JIRA and Bamboo are the successor of the deprecated Identity Federation for AWS 1.x (which has been switched to maintenance mode, see below) - Identity Federation for AWS has been designed as a cross-product add-on, however, the Atlassian Marketplace meanwhile prevents cross-product 'Paid-via-Atlassian' add-ons, which required us to refactor the product into separate editions per application.
Will Identity Federation for AWS 1.x remain available?
While deprecated, Identity Federation for AWS 1.x will remain supported for a while to ease the migration. However, we are going to archive it soon and are switching it to maintenance mode, which means we will continue to fix functional issues, but are not going to add any features and improvements and focus on Identity Federation for AWS 2.x instead - please get in touch if you have any questions or suggestions about this transition.
How do I migrate from Identity Federation for AWS 1.x to Identity Federation for AWS (JIRA) 2.x?
Please refer to How to migrate from Identity Federation for AWS 1.x to Identity Federation for AWS (JIRA) 2.x for details.
Security FAQ
How are my persisted long-term AWS security credentials secured against unauthorized usage?
The persisted long-term AWS security credentials (comprised of an Access Key Id and a Secret Access Key) are stored in the database encrypted with a 128-bit Advanced Encryption Standard (AES) private secret key, which is stored on the file system and unique per application instance (e.g. JIRA installation). This means you can loose either your database or your file system without compromising your AWS accounts right away.
Licensing & Purchasing
Do my Atlassian host application and Identity Federation for AWS licenses have to match?
...
| Info |
|---|
| Obviously there are many valid use cases where this limitation doesn't make sense. Accordingly, many customers and vendors have requested the ability to decouple the add-on user tier from the host application - please contact Atlassian directly for any questions in this regard, maybe they will reconsider this over time. |
Do I need an Identity Federation for AWS license when integrating the product with another licensed Utoolity add-on like Tasks for AWS?
No, customers of other AWS related Utoolity add-ons are eligible for a free license of Identity Federation for AWS:
there is no action required: Identity Federation for AWS will detect other licensed Utoolity add-ons and be fully functional without a dedicated license of its own then
promotional licenses are available: please get in touch, if you'd prefer to use a dedicated license for Identity Federation for AWS instead, complimentary 100% discount codes are available for eligible customers