Page tree
Skip to end of metadata
Go to start of metadata

Integrated Windows Authentication (IWA / Kerberos) gives the end user access to Atlassian products without entering a user name and password. IWA SSO is typically used in an enterprise LAN, and is the preferred choice for Windows domains and Microsoft Desktop environments

IWA / Kerberos requires that client machines have access to a Key Distribution Center (KDC), which in the Windows world generally means Active Directory. For security reasons, AD is generally not reachable outside the local network/corporate intranet, making Kerberos mainly applicable within a company.

It is perfectly fine to combine IWA with other SSO mechanisms such as SAML. In such a combination, IWA provides hassle-free login experiences when the user is present at his desktop machine on the office, while SAML enable the user to log in when they on the run outside the office or when accessing from cellphones or other non-Kerberos compatible devices.


Setup guide for Integrated Windows Authentication

How Integrated Windows Authentication works

Kerberos FAQ

Kantega Single Sign-on FAQ

Requesting support



  • No labels