Swiftorial Logo
Home
Swift Lessons
Matchups
CodeSnaps
Tutorials
Career
Resources

Advanced Security Settings in Jira

Introduction

Security is a critical aspect of managing Jira, especially in environments where sensitive information is handled. This tutorial covers advanced security settings in Jira, providing detailed explanations and practical examples to ensure your Jira instance is secure.

Configuring Global Permissions

Global permissions in Jira control the overall access to various administrative functions and features. To configure global permissions:

  1. Navigate to Jira Administration > System.
  2. Under Security, select Global Permissions.
  3. Click Add Permission and select the permission you want to assign.
  4. Choose the group or project role to which you want to grant the permission.
  5. Click Add.
Example: Granting the 'Jira Administrators' group the 'Administer Jira' permission.

Setting Up Issue Security Schemes

Issue Security Schemes allow you to control who can see individual issues. Here’s how to set them up:

  1. Go to Jira Administration > Issues.
  2. Under Issue Security Schemes, click Add Issue Security Scheme.
  3. Name your scheme and provide a description.
  4. Click Add Security Level to define the different levels of issue security.
  5. For each security level, click Add and select the users, groups, or roles that should have access.
Example: Creating a 'Confidential' security level that only 'Project Leads' can access.

Enforcing Two-Factor Authentication (2FA)

Two-Factor Authentication (2FA) adds an extra layer of security. Jira supports various 2FA apps and plugins. To enforce 2FA:

  1. Install a 2FA plugin of your choice from the Atlassian Marketplace.
  2. Configure the plugin according to the vendor's instructions.
  3. Navigate to Jira Administration > Plugins and enable the 2FA plugin.
  4. Ensure all users have set up 2FA for their accounts via their user profiles.
Example: Using the 'Google Authenticator' plugin for 2FA in Jira.

Audit Logging

Audit logs help track changes and access within Jira, providing insights into potential security issues. To configure audit logging:

  1. Go to Jira Administration > System.
  2. Under Security, select Audit Log.
  3. Choose the logging level (e.g., minimal, moderate, or verbose).
  4. Click Save.
Example: Setting the audit log level to 'Verbose' to capture detailed events.

Configuring Password Policies

Strong password policies help protect user accounts from unauthorized access. To configure password policies:

  1. Navigate to Jira Administration > User Management.
  2. Under Password Policy, define the complexity requirements (e.g., minimum length, special characters).
  3. Set the password expiration period.
  4. Click Save.
Example: Requiring passwords to be at least 12 characters long and include at least one special character.

Conclusion

Configuring advanced security settings in Jira is essential for protecting sensitive data and maintaining the integrity of your projects. By following the steps outlined in this tutorial, you can enhance the security of your Jira instance and ensure that it is well-protected against potential threats.