14
Customers have installed this add-on in at least 14 active instances.
    by SecSign Technologiesfor JIRA Server 6.4 - 7.3.6
    Unsupported
    This add-on isn't formally supported, but you can ask a question via Atlassian Answers.

    Ask a question

    JIRA Service Desk
    This add-on is compatible with JIRA Service Desk.
    Unsupported
    This add-on isn't formally supported, but you can ask a question via Atlassian Answers.

    Ask a question

    Data Center
    This add-on is compatible with the clustering and high-availability capabilities of our products.
    JIRA Service Desk
    This add-on is compatible with JIRA Service Desk.
    Get it nowFree add-on

    Use your Mac, iPhone, Android, Apple Watch for 2FA login security for JIRA. Work with your own ID server or our cloud

    Use your Mac, iPhone, Android, Apple Watch for 2FA login security for JIRA. Work with your own ID server or our cloud

    Tap matching access symbol for final verification

    Stop password chaos with 2048-bit cryptography

    On-premise: It's your decision how to use it

    Integrate SecSign two-factor authentication and use your iOS or Android smartphone, Apple Watch or Mac to log securely into your JIRA account. The restoration feature protects your ID from loss.

    No need to enter a password for JIRA. Authentication with 2048-bit private key, challenge response authentication and patented SafeKey method. Protects against brute force, phishing and passwort theft.

    No server installation, no configuration. Just install the plugin

    Or use your on-premise ID server behind your own firewall. Custom configuration and branding.

    Questions about on-premise? Contact support@secsign.com

    More details

    Create your SecSign ID and get started

    How to sign in

    • Log into your JIRA account with your SecSign user name
    • App: Tap your ID in your SecSign ID app and enter your PIN
    • App: Select the correct access symbol

    Security you can trust

    • Two-factor authentication for easy use and integration
    • No entry of passwords or complex codes required for the login - no re-typing of SMS codes, etc.
    • Confirm the login with your app (smartphone or desktop)
    • Authentication with 2048-bit private key and challenge response authentication
    • Patented SafeKey method
    • No storage of confidential credentials on a server
    • Secure your SecSign ID via passcode or Apple's Touch ID

    More Information

    User reviews

    (2)
    Sign in to write a review
    by Andrew Evans on 2017-05-10
    A fantastic idea and works really well. I did have issues with it at first getting stuck on the login screen but it seemed to be an issue with my installation of Jira / the server environment rather than this plugin, but the support I received from SecSign was absolutely amazing, extremely supportive and helped me get things working. I would highly recommend the SecSign platform and will be using it in my own projects for all my authentication needs. I just need to convince my boss it will be useful too.
    Was this review helpful?YesNo
    SecSign Technologies

    Hello Andrew,

    thank you for your feedback. Unfortunately, you did not respond to our last Email. We suspect a java script error on your site to be the reason for the issue. You can contact us at support@secsign.com and we are happy to help you with some additional troubleshooting.

    Sincerely,

    Your SecSign Team

    by Niek Neuij on 2017-02-16
    Disappointing. It's not really two-factor like Steam or Azure for example, where you need a username/password *and* get the code. The add-on actually works great, and to match a picture on your screen to that of your mobile is amazing, and way more convenient than those codes most 2fa providers send you. But this add-on is not 2fa, so much as "either choose our authentication method, or use the regular way". I want users to have to do both. Update: Yes, your product is very secure. But our client requires a solution where authentication happens against a third-party agent and Confluence/JIRA. And I must say I agree, because it's an extra layer of security. Why not just add the option?
    Was this review helpful?YesNo
    SecSign Technologies

    Hi Niek,

    thank you for taking the time to review our plugin. As a matter of fact, most customers can't believe our app really offers 2FA because it's just so convenient.

    But we can reassure you, it really is 2FA: In fact it is one of the strongest methods available on the market. More information about the procedure can be found here.

    I understand it that you want an additional login with the Confluence/JIRA Login credentials before the two-factor authentication kicks in? With the SecSign ID the user has to confirm the login with the private key on his smartphone. Confluence/JIRA verifies the users' information with the SecSign ID server. So basically, the SecSign ID server is the third party you are referring to. However, if you insist on an additional login step with the Confluence/JIRA credentials: this is absolutely doable with our plugin if you are using an on-premise server. Feel free to contact us at sales@secsign.com with the approximate number of users and we are happy to assist you.

    PKI based 2FA is extremely secure because the sensitive user data are never transmitted via the browser/app. That means no secure authentication credentials are communicated between the authentication service, Confluence and the phone. The two factors for the SecSign ID are the PIN/password (knowledge) and the private key secured on the phone (possession). It works similar to using your debit card on an ATM.

    Don't hesitate to contact us with any questions you may have about the procedure.

    Pricing

    Basic support resources are available for this add-on.

    Vendor support resources

    Documentation

    Find out how this add-on works.

    Atlassian Community

    Atlassian-hosted discussions connect you to other customers who use this add-on.

    Versions

    Version 1.0.9 JIRA Server 6.4 - 7.3.6 Released 2017-03-16

    Summary

    URL and user name bugfixes & added captchas for login forms

    Installation

    1. Log into your JIRA instance as an admin.
    2. Click the admin dropdown and choose Add-ons. The Manage add-ons screen loads.
    3. Click Find new add-ons from the left-hand side of the page.
    4. Locate SecSign ID Two Factor Authentication via search. Results include add-on versions compatible with your JIRA instance.
    5. Click Install to download and install your add-on.
    6. You're all set! Click Close in the Installed and ready to go dialog.

    To find older SecSign ID Two Factor Authentication versions compatible with your instance, you can look through our version history page.

    Similar add-ons