Understanding the New Atlassian Jira and Confluence External User Security Policy

Atlassian has recently released a new security feature that allows you, as an Atlassian Administrator, to perform the following:

  1. Require Two-factor authentication for external users via an email with a one-time passcode.

  2. Require external users to verify their identity with an extra step every seven (7) days.

  3. Block external users from making API calls to your organization's Atlassian products.

An Atlassian Access subscription is required for this feature to be available.

Screenshot of the new "External Users" security policy

Our recommendations:

  1. Assess the impact of enabling this feature

  2. Download the list of external users to see who may potentially by this change

  3. Review and document the changes internally with your Change Approval Board

  4. Communicate with the potentially affected external users

  5. Enable the features as they will increase your organization's identity and data security.

Source: https://support.atlassian.com/security-and-access-policies/docs/understand-external-user-security/

PreviousAtlassian JiraNextOkta

Last updated

Was this helpful?