Versions Compared

Old Version 12

changes.mady.by.user Steffen Opel [Utoolity]

Saved on

compared with

New Version Current

changes.mady.by.user Steffen Opel [Utoolity]

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Added contact links.

 

Section
Column
width64%

This page provides answers to frequently asked questions regarding Identity Federation for AWS:

Column
width32%
Panel
bgColor#eeeeee

On this page:

Table of Contents

General FAQ

How do I set up Identity Federation for AWS?

Please refer to the Installation and Upgrade Guide.

Which Atlassian products are currently supported by Identity Federation for AWS?

Identity Federation for AWS aims to be a cross product solution, however, we've focused on JIRA to get things started (please refer to the Compatibility Notes for details) - please get in touch with us, if you are interested in support for other Atlassian products, we are eager to learn more about your use case and adjusting our respective roadmap accordingly (see below for a notable special case though).

Will Identity Federation for AWS be available for Atlassian Crowd?

Identity Federation for AWS aims to be a cross product solution and Atlassian Crowd would be the most obvious target product for Enterprise deployments. The add-on could work within Crowd in principle, however Crowd currently lacks the Universal Plugin Manager (UPM) and support for selling Crowd add-ons via the Atlassian Marketplace in turn.

Does Identity Federation for AWS support SAML?  

While we would love to support AWS Identity and Access Management Using SAML, true integration of SAML (Security Assertion Markup Language) is outside of the realm of Identity Federation for AWS, however: 

Tip
titleIdentity Federation between Atlassian Crowd and AWS

That being said, the main use case of this add-on is to provide similar functionality by leveraging the alternative AWS options for Identity Federation - you thereby gain the same benefits of federated access and a unified directory for all Atlassian products via Crowd.

  • (info) True SAML support would best be addressed by Atlassian Crowd itself - a related feature request is tracked by Atlassian in General SAML Support (CWD-1822), so please add your vote there to increase the priority. Also, don't hesitate to get in touch with us to discuss alternatives.

Security FAQ

How are my persisted long-term AWS security credentials secured against unauthorized usage?

The persisted long-term AWS security credentials (comprised of an Access Key Id and a Secret Access Key) are stored in the database encrypted with a 128-bit Advanced Encryption Standard (AES) private secret key, which is stored on the file system and unique per application instance (e.g. JIRA installation). This means you can loose either your database or your file system without compromising your AWS accounts right away.

Licensing & Purchasing

Do my JIRA and Identity Federation for AWS licenses have to match?

...

Info
Obviously there are many valid use cases where this limitation doesn't make sense. Accordingly, many customers and vendors have requested the ability to decouple the add-on user tier from the host application - please contact Atlassian directly for any questions in this regard, maybe they will reconsider this over time.