Two-Factor Authentication for Bitbucket Cloud Setups

Protect your Cloud Bitbucket Account with on-premise two-factor authentication from SecSign ID with the Atlassian Identity Manager

The perfect solution to upgrade your Cloud Atlassian setup with on-premise security

Simply integrate the SecSign ID Two-Factor Authentication plugin and offer your users secure authentication with your Bitbucket cloud system, including convenient SSO setups. Connect your on-premise directory service for simple user management and added two-factor authentication security.

Use SecSign ID Bitbucket two factor authentication for your Bitbucket account to securely protect all your data in the cloud. Works for iOS or Android mobile devices as well as for desktop.


Find out why our Two-Factor Authentication is the best, some key-facts for developers and why you should upgrade to SecSign for your business.

Learn more about the options of on-premise use and your own customized ID App in your corporate design.

Download the plugin as cloud version for a free and convenient protection.

Table of contents

    Bitbucket is a web application for version control repository hosting service that can be used for source code and development process. It was developed by the company Atlassian. Bitbucket has comprehensive features and a high adaptability.Thus, the functionality of Bitbucket can be optionally expanded or adapted by using plugins (add-on’s).
    SecSign ID is a plugin for real two-factor authentication (2FA) for Bitbucket. 2FA adds another layer of security to your installation by using a second token. In this case the physical token is your smartphone.

    For on-premise Bitbucket protection without SAML please refer to our guide on the integration of our SecSign ID on-premise Bitbucket plugin.
    Bitbucket on-premise protection
    To add on-premise authentication protection to your on-premise Atlassian setup with SAML, please refer to our SAML integration information for on-premise setups.
    SAML Bitbucket on-premise protection

    Questions? Feel free to get in touch with us if you need help setting up your SecSign ID plugin or to request a plugin for a not yet supported environment.

    1. Pre-requirements

    To use the SecSign ID SAML Two-Factor Authentication with your Cloud Bitbucket Setup you need to activate the Atlassian Identity Manager. Please refer to the Atlassian guide on how to opt-in to using the Identity Manager.

    Once you verified your Domain you can go ahead and activate the SAML Authentication with SecSign ID.

    2. Atlassian Settings

    Open to your Atlassian Bitbucket Backend and navigate to [ your Organization ] > SAML Single-Sign On > Add SAML configuration

    Enter the following parameter:

    Identity provider Entity ID: [ your SecSign ID server address ] for example https://admin.secsign.com/SAML_Login

    Identity provider SSO URL: [ your SecSign ID server address ] for example https://admin.secsign.com/SAML_Login

    To enter the public x509 certificate navigate to your SecSign ID Administrator Backend and select the user that holds the certificate to sign.
    For an overview of the users holding a certificate navigate to “Certificate user” in your SecSign ID Administrator Backend and select details for our URL, in this case *.secsign.com
    Expand the certificate by selecting the triangle at the certificate. Copy the Certificate PEM encoded in your clipboard and switch back to the Atlassian Backend settings.

    Public x509 certificate: Copy the PEM Certificate from the SecSign ID Administrator Backend

    Save the configuration.

    2. SecSign ID Administrator Settings

    Create a new SAML-Service-Provider in your SecSign ID Administrator page.

    Enter the following parameter:

    Service Provider Issuer: Copy the SP Entity ID from your Atlassian Administrator Backend and enter it here

    Audience Restriction: Same Entry as Service Provider Issuer

    SAML response URL: Enter the SP Assertion Consumer Service URL from your Atlassian Administrator Backend


    Do you have a service that needs SAML two-factor authentication protection? You didn’t find any information about your setup? We offer custom solutions for almost any SAML setup. Message us for a fast and convenient solution for your service.

    Do you intend to operate the SecSign ID Two-Factor Authentication server On-Premise or in the cloud?

    Stop Patchwork-Solutions:
    2FA for all your Atlassian services

    Landing Page

    More information about the SecSign ID Atlassian setups are available on our Atlassian Landing Page.


    Need help?

    Looking for detailed manuals to cover all the features and functionality of SecSign ID and SecSign Portal? Check out the Technical Whitepaper to access complete instructions on how to get the most out of your SecSign products.

    Do NOT follow this link or you will be banned from the site!