Atlassian Access is a subscription that you purchase for your whole company.
Atlassian Access enables visibility and security across all Atlassian accounts and products at your company. You’ll have one place to manage your users and enforce security policies so your business can scale with confidence.
When you set Atlassian Access policies and features, they apply to all your managed users with access to these cloud products:
- Jira Software
- Jira Core
- Jira Service Desk (doesn’t apply to portal customer accounts, only Atlassian accounts)
- Trello (coming soon)
Prerequisites for Atlassian Access
Before you can subscribe to Atlassian Access, you need to create an organization and verify your domain:
- To create an organization, go to admin.atlassian.com and follow the prompts. For details, see Set up an Atlassian organization
- From admin.atlassian.com, click Domains to verify your domains. For details, see Verify a domain for your organization.
Once you create an organization and verify your domains, all the Atlassian accounts with email addresses from those domains become managed by your organization. Learn more about how organizations work at Atlassian organizations.
Subscribe to Atlassian Access
An Atlassian Access subscription gives you the ability to apply security policies over managed accounts with your verified domains.
To subscribe to Atlassian Access:
From your organization at admin.atlassian.com, go to any of the pages for Atlassian Access features (e.g. User provisioning, Two-step verification) and click the Learn more button.
Choose Try it free for 30 days to begin your Atlassian Access trial.
To see the number users you’re paying for, go to Billing > Manage subscriptions. For more billing details, read more about Pricing and billing for Atlassian Access. To get a billing estimate for Atlassian Access, check out our pricing calculator page.
Atlassian Access security features
To apply security policies to your managed accounts, you have a few options after you subscribe to Atlassian Access.
- Connect your identity provider to your Atlassian organization
- Set security policies from your Atlassian organization
- Check the audit log for activities that occur across your sites
- Revoke a user’s API tokens
- Get quick responses from support
Connect your identity provider to your Atlassian organization
Atlassian Access includes two features for connecting your identity provider: SAML single sign-on and user provisioning.
SAML single sign-on
If you’d like your users to authenticate through your company’s identity provider when they log in to your Atlassian cloud products, you can set up SAML for single sign-on (SSO). SSO allows a user to authenticate with one set of login credentials and access multiple products during their session.
With SSO, you have a few benefits:
- If self signup is enabled, we automatically create an Atlassian account for them when that user logs in for the first time with SSO.
- You can set security policies from your identity provider that will apply when users log in to your Atlassian products.
Read more about SAML single sign-on.
User provisioning integrates an external user directory with your Atlassian cloud products. With user provisioning, you have a few benefits:
- Automatically update the users and groups in your Atlassian organization when you make updates in your identity provider, saving you time.
- When you deactivate a user in your identity provider, that use will automatically be deactivated in your Atlassian organization, giving you more security and better control over your bill.
- New users automatically have access to your products as soon as they’re activated, making onboarding new employees easier.
Read more about User provisioning.
Set security policies from your Atlassian organization
If you decide not to connect an identity provider to your Atlassian organization, we offer a few other security policies you can enforce for all your managed users.
Enforced two-step verification
Two-step verification adds a second login step to your managed users’ Atlassian accounts by requiring them to enter a 6-digit code in addition to their password when they log in. The second step helps keep their account secure even if the password is compromised, keeping your content and resources safer.
Read more about enforced two-step verification.
Set a password policy to require all of your managed users to meet a minimum password strength and/or password expiry period. This ensures that the people accessing your Atlassian Cloud products are using best practices when creating passwords.
Read more about password policies.
Check the audit log for activities that occur across your sites
The audit log tracks key activities that occur across your Atlassian organization’s sites. You can use these activities to diagnose problems with or questions about user details, group memberships, and product access
Read more about audit logging.
Revoke a user’s API tokens
You can always see the API tokens users create to perform authenticated operations with product APIs. With an Atlassian Access subscription, you can also revoke a user’s API tokens.
Read more about revoking API tokens from an individual managed account details.
Get quick responses from support
When you subscribe to Atlassian Access, you’ll get Priority Support across all the Atlassian Cloud products that Atlassian Access is available for.
Priority Support comes with one-hour response times for critical issues, including weekend availability. For non-business-critical issues you’ll receive 24-hour turnarounds during weekdays. Our dedicated round-the-world, round-the-clock support team will be standing by to ensure you get the answers you need, when you need them.