Key9 Identity
  • Welcome To Key9 Identity
  • SSH
    • Installation & Setup
      • MacOS Yubikey Smartcard/PIV instructions.
        • 1. Installation of MacOS software
        • 2. Changing the Yubikey PIN.
        • 3. Generating Keys and Certificates for the Yubikey
        • 4. Enrolling the public key to Key9
        • 5. Testing and configuring SSH
      • Windows Yubikey Smartcard/PIV instructions
        • 1. Installation of Windows software.
        • 2. Getting the system ready for libykcs11.dll
        • 3. Adding libykcs11.dll to SSH configurations.
        • 4. Generating Keys and Certificates for the Yubikey
        • 5. Enrolling the public key to Key9
        • 6. Testing your SSH key.
      • OpenSSH with Yubikey / FIDO2 protected keys
        • 1. Prerequisites
        • 2. OpenSSH command for Yubkey FIDO2
        • 3. Enrolling your public key to Key9
        • 4. Testing your SSH key
      • Setting a Yubikey PIN without Yubikey software.
        • 1. Using Key9 "registration" to register a new Yubikey PIN.
        • 2. Using "webauthn.io" to register a new Yubikey PIN.
      • RSA Password Protected SSH Key
        • 1. Key9 Settings to allow RSA
        • 2. Generating RSA SSH Key
        • 3. Enrolling your public key to Key9
        • 4. Testing your SSH key
      • Determine your Yubikey Type
        • 1. Linux "lsusb" command
        • 2. MacOS "ioreg" command
        • 3. Windows 11
      • Useful External Links
      • Windows Powershell with Yubikey/FIDO2-protected SSH keys
        • 1. Download OpenSSH for Windows.
        • 2. Setting up your SSH keys
        • 3. Enrolling your public key to Key9
      • Technical Notes
        • Pop!_OS - "agent refused operation"
      • Key9 SSH for Debian 12 [Bookworm] Howto
        • 1. Installing GPG
        • 2. Configuring the Key9 Debian 12 Repo.
        • 3. Configuring the Key9 SSH client
        • 4. Configuring Name Service Switch [/etc/nsswitch.conf]
        • 5. Configuring the OpenSSH server
        • 6. Modifying "sudoers" [optional]
        • 7. Configuring "k9-tail" for logs [optional]
        • 8. Automatic home directory creation [optional]
  • Web
    • Marketplace Applications
      • Amazon Web Services
      • Atlassian Jira
      • Cyera
      • GitBook
      • Google Workspace
      • KnowBe4
      • LibreNMS
      • NetBox
      • SentinalOne
      • Wiz
Powered by GitBook
On this page
  1. Web
  2. Marketplace Applications

Atlassian Jira

Configuring Key9 Identity SAML SSO with Atlassian Jira

Atlassian required a subscription to Atlassian Guard Standard, to use SSO.

More information about Atlassian Guard can be found here.

To setup JIRA, we need two pieces of information.

  1. Service provider entity URL: This url can be found in the SAML configuration via the Atlassian Admin.

  2. Service provider assertion consumer service URL: This url can be found in the SAML configuration via the Atlassian Admin.

Jira SSO setup information can be found here.

Make sure you're an admin for an Atlassian organization.

  1. Go to admin.atlassian.com. Select your organization if you have more than one.

  2. Navigate to: Security > Identity providers.

  3. Select Set up SAML single sign-on.

  4. Select Other provider, in the Identity Provider dropdown.

  5. Enter Key9 for the Directory name field

  6. Add SAML details.

Copy and paste the URLs from your Atlassian organization to Key9 Setup Items

  1. Service provider entity URL

  2. Service provider assertion consumer service URL

After you have created your Key9 application, click the SSO tab in the side navigation, and copy the following information to Jira:

  1. Copy the Key9 Entity ID url to the Identity provider Entity ID field.

  2. Copy the Key9 SSO url to the Identity provider SSO URL.

  3. Copy the Key9 X.509 Certificate to the Public x509 certificate field.

(To view and copy the x509 certificate in Key9, select View Certificate Details from the Certificate Options dropdown menu, then click the copy icon.)

Save the SAML configuration and test the connection.

-------------------

By default, applications are not active upon creation. Active applications are immediately available to assign groups. Applications should only be activated when you have configured the Service Provider (SP).

PreviousAmazon Web ServicesNextCyera

Last updated 29 days ago