All Collections
🤔 FAQs and Administration
How to sync the manager attribute into Atlas with Okta
How to sync the manager attribute into Atlas with Okta

Sync the manager attribute from your Okta to unlock enhanced reporting lines and filters in Atlas.

Eric Saboia avatar
Written by Eric Saboia
Updated over a week ago

This guide assumes you have read the how to sync the manager attribute into Atlas guide, which describes the prerequisites for syncing the manager attribute with Okta.


Integration Overview

Atlas determines the manager of a user by taking the value received for the manager field (manager.value) and looking for a match by either email (if the value was an email) or user id (if the value was an id). Think about the manager.value as a reference to another person.

Only email and user ID are valid ways to reference the person’s manager.

For example, here is the simple reporting line consisting of three people, where the top manager (right-most person) doesn't have manager.value set. This is usually the case with the company's Founders, CEOs, etc.

In this case, the reference is made via the email value (notice the values for the manager.value field in the blue boxes and how they refer to the person's manager).

Fran reports to Jane, who reports to Kurt. Fran’s manager field is Kurt’s email. Jane’s manager field is Kurt’s email. Kurt’s manager field is null.

And here is the same example but with the references made via the user IDs (notice the values for the manager.value filed in the blue boxes and how they refer to the person's manager).

Fran reports to Jane, who reports to Kurt. Fran’s manager field is Kurt’s user id. Jane’s manager field is Kurt’s user id. Kurt’s manager field is null.

Step 1: Create the new field

In Okta, create a new field for the Atlassian application.

This step will define the structure of the field we receive at Atlassian when a new user is created/updated, so it’s important to ensure that you follow the correct schema definition:

Namespace

urn:ietf:params:scim:schemas:extension:enterprise:2.0:User

External name

manager.value

IT IS IMPORTANT to ensure that the external name and namespace are defined exactly as described above (as specified by the SCIM specification in RFC 7643 section 4.3). Everything else won't be recognized by Atlassian’s Cloud API and will be discarded.

  1. Go to the Atlassian application and select “Go to profile Editor” under the “Provisioning” tab

  2. In the profile editor, select “add attribute” and configure as defined below


Step 2: Map Okta’s attribute to the newly created field

Map the newly created field to the internal Okta field that contains the manager value. The value we expect to receive is a string containing either the email or the internal user-id of the user’s manager.

  1. Go back to the “Provisioning” tab of the Atlassian Cloud application

  2. Scroll to the bottom of the page and select “Show Unmapped Attributes”

  3. Edit the new “Manager” attribute, which was created in the previous step

  4. Select “Map From Okta Profile” under the “Attribute value” and then select the correct field in Okta that has the manager’s email or id

  5. To keep it in sync, make sure “Create and update” is checked to send updates to Atlassian when the user is created or updated


Step 3: Re-sync your users

Re-sync your user base once the mapping is complete and you’re ready to send the new information to Atlassian.


Step 4: Confirming the sync

You can check the progress of the sync by visiting admin.atlassian.com and navigating to “Security → Identity Providers → Your Okta Directory”, and checking the “User provisioning” info.

Once the sync is complete, visit a user profile in Atlas, Jira, or Confluence to see the new section for “Reporting lines“, which shows the user’s manager and direct reports or peers.


Troubleshooting

I still don’t see the reporting line after following all the steps

Ensure that there are no typos in the manager field created in Step 1. The namespace should be urn:ietf:params:scim:schemas:extension:enterprise:2.0:User and the external name manager.value.

Also, confirm that your Okta users have a manager attribute that it’s either the email or the user id of their manager and that you have mapped this attribute to the newly created field as described in Step 2.

You might also have to re-sync all users and ensure that the users were indeed resynced to Atlassian by looking at Okta’s logs.

There is a “missing profile” in the reporting line

  1. Typically, one person in the organization has no manager (e.g., the CEO). It is important to ensure that this person's manager field is empty and has no value set to it on Okta to prevent the missing profile error (shown below)

Still having a problem with following the steps above?

Contact us through the “give feedback” button in the navigation bar of Atlas, and we’ll assist you.

Did this answer your question?