Configure RSA Cloud Authentication Service

1. Sign in to RSA Cloud Administration Console. 
2. Click Authentication Clients > Relying Parties.                                                                                                                                         
3. On the Relying Party Catalog page, click Add a Relying Party and click Add for Service Provider SAML.                                      
4. On the Basic Information page, enter the name for the application in the Name field and click Next Step.                                         
5. On the Authentication page, choose SecurID manages all authentication.
6. Select a Primary Authentication Method and Access Policy as required and click Next Step.                                                        
7. Provide the Service Provider details in the following format: 
   1. ACS URL: https://auth.atlassian.com/login/callback?connection=<saml.ID>
   2. Service Provider Entity ID: https://auth.atlassian.com/<saml.ID>    
      Refer to the Configure Atlassian Jira section to obtain the ACS URL and Entity ID.                                                             
8. In the SAML Response Protection section, choose IdP signs assertion within response.
9. Download the certificate by clicking Download Certificate.                                                                                                                  
10. Click Show Advanced Configuration.
11. Under the User Identity section, configure Identifier Type and Property. For example, Identifier Type: Auto Detect and Property: Auto Detect.                                                                                                                                                        
12. Click Save and Finish.
13. On the My Relying Parties page, click the Edit drop-down icon and select the Metadata option to download the metadata.             
14. Click Publish Changes. Your application is now enabled for SSO.                                                                                                          

Configure Atlassian Jira

• You have Atlassian Access, which is an organization-level subscription that connects Atlassian cloud products to the Identity Provider.
• Your organization is registered and verified in Atlassian Access.
• Atlassian Jira is configured in Atlassian Access.

1. Log on to http://admin.atlassian.com/. 
2. Select your organization > Security > Identity Providers.                                                                                                                       
3. Click Choose in the Other provider section.                                                                                                                                         
4. Provide a name for the Identity Provider and click Add.                                                                                                                        
5. Provide the following details and click Next.
   1. Identity Provider Entity ID – The EntityID value that can be obtained from the metadata file downloaded from RSA.
   2. Identity Provider SSO URL – The SingleSignOnService value that can be obtained from the metadata file downloaded from RSA.
   3. X509 Certificate – Upload the certificate that was downloaded from RSA.                                                                                          
6. Copy the Service Provider Entity URL and ACS URL and click Next.                                                                                             
7. Select your Domain and click Next.                                                                                                                                                      
8. Click Stop and save SAML.