Crowd Security Suite Usecase document

A Use-Case Guide to miniOrange's Crowd Security Suite

This article will provide a detailed overview of the various use cases solved by miniOrange applications included in the Crowd Security Suite for Atlassian Crowd Data Center and its connected Atlassian applications. From simplifying authentication with Single Sign-On (SSO) to strengthening security measures with Multi-Factor Authentication (MFA), maintaining user consistency with User Sync, and managing users efficiently with User Management, we'll cover all the bases. Join us as we uncover each application’s use case, simplifying your understanding.

Use Case - You want a seamless Single Sign-On (SSO) solution to integrate JIRA, Confluence, Bitbucket, and Bamboo via Crowd. You want the users and their permissions to be handled in Crowd and the authentication to be handled via the IDP.

This is where the Crowd SAML addon and its connectors come into play. The Crowd SAML addon connects Crowd with the IDP for SSO, while the connectors are installed in all Crowd connected applications to extend the SSO functionality. This setup ensures that all SSO requests and responses are routed through the Crowd seamlessly. With the IDP handling user authentication and Crowd managing user permissions, end-users won't even notice the process, making for a smooth experience.

Use Case - You have internal users, such as employees, and external users, like customers. You've implemented Single Sign-On (SSO) for your employees, and they are secure. However, you also aim to secure your customers who log in using their local credentials.

In this scenario, your organization needs an additional security layer for external users or customers, which can be implemented with the miniOrange 2FA apps. It adds an extra layer of security, requiring users to provide a second authentication factor beyond just their password like OTP over SMS/Mail, Mobile Authenticator safeguarding sensitive data within the Atlassian Crowd environment.

Use Case - In an organizational environment, change is constant; employees often experience promotions or change departments. Since all your users are already within the Identity Provider (IdP), ensuring synchronization between your IdP and Atlassian Crowd can be challenging.

You want to reflect the organizational changes or updates in your IDP to the Atlassian Crowd environment as well, but manual replication is impractical due to the extensive time it would require accessing each application, one at a time. You can solve this with the miniOrange Crowd User Sync app by automatically synchronizing users, groups & directory changes made in the IdP with the Atlassian Crowd application. While this process is triggered when a change is made on your IDP, the plugin also allows you to schedule regular updates. This ensures that modifications, additions, or deletions in user profiles are synced across platforms, eliminating the need for manual adjustments and saving valuable administrative time.

Use Case - You have employees or contractors who have had access to Atlassian licenses for the past ‘X’ months but they haven’t used it. Your goal is to deactivate these users especially when you need to give licenses to new users.

You have successfully onboarded both employees and external contractors onto your Crowd platform, and you've implemented Single Sign-On (SSO) to ensure security. Despite the investment made for each user, some of them haven't utilized Atlassian apps in recent months. In such cases, our Crowd Bulk User Management app enables you to schedule and perform mass actions, such as deactivating users based on their last login activity. By performing tasks like bulk activation, deactivation, and group management, organizations can efficiently allocate resources and trim unnecessary license expenses.

To delve further into these solutions and enhance your organization's security and user management practices, we encourage you to continue exploring our Crowd Security Suite.