To manage security settings:
- Select the Settings gear in the top navigation bar.
- On the left side of the page, select Platform in the Settings section.
- Select the Security tab.
Use these options to configure security settings for your work:
- Server Name or IP: This setting must be configured for navigation from email to the application.
- Minimum Password Length: Controls the minimum length of a password. The minimum value is 8 characters.
- Minimum Password Uppercase: Controls how many uppercase characters are required in the password. The minimum number of uppercase characters is 1.
- Minimum Password Numeric Characters: Controls how many number characters are required in the password. The minimum number of numeric characters is 1.
- Temporary Links Expiration (Hours): Controls the time limit during which the links to reset a password or to get a new user account are valid. The minimum value is 1 hour. The maximum and default value is 24 hours.
- Session Timeout (Minutes): Controls the session timeout. If you have multiple tabs open and are working in one of them, none of them will time out. If you do not work in any of them for longer than the set timeout and one tab times out, all will time out.
- Enable Touchscreen: Turns on or turns off the touchscreen capability.
-
Login Security: Controls the cookie security level at the login page.
- Populate the login page with the last email: Select this option to store the user's email address in a cookie, allowing the email address field to be populated on the login page. The users have to enter only their password.
- Do not populate the login page with the last email: Select this option not to store the email address in a cookie. The users have to enter their email address and password to sign in to Jira Align.
-
Authentication method: Select one of three methods for users to authenticate with Jira Align:
- Manual sign in: Users will log in through the default login screen for Jira Align.
- SAML single sign-on (SSO): Configure logins through your SSO provider. See additional options below.
- Atlassian Guard: Allow users to log in using their Atlassian account credentials. Review Atlassian Guard authentication for more details.
-
Auto-populate Atlassian account ID (AAID): This setting displays after selecting Atlassian Guard in the Authentication method setting. To prevent account lockouts, we recommend keeping the default option of Yes.
- When set to Yes, Jira Align will automatically populate AAIDs into the External ID field of each user's profile in Jira Align on their first login. Note: Any previous entries in the field will be overwritten. You may have entered data into the External ID field to link accounts with a SAML single sign-on (SSO) provider.
- If you would like to change this setting to No, locate each user’s AAID, and enter it into the External ID field of their Jira Align profile.
Important! Enter your AAID into your user profile before changing this setting. Users who do not have a valid AAID present in their profile will be locked out of Jira Align.
The following options are available when SAML single sign-on (SSO) is selected in the Authentication method setting:
-
Disable Manual Sign In: Controls if the users can access the application by manually signing in through the login page or by using the SSO. The default value is set to No. When the manual sign in is disabled:
- Such security settings as Minimum Password Length, Minimum Password Uppercase, Minimum Password Numeric Characters, and Temporary Links Expiration (Hours) are disabled.
- The Resend Password link in user properties in User details on the people page and in user’s profile is disabled.
- Login page is not available for users.
- Users created while the manual sign in is disabled do not receive a New User Setup email.
- SAML 2.0 Identity Providers: Allows you to use a SAML 2.0 Identity Provider to implement SSO. To add your SAML 2.0 Identity Provider, click Add SAML Provider, then copy and paste the SAML 2.0 Metadata XML. Under NameID Lookup By, select whether you want to use the Email or External ID field to authenticate Jira Align users by. User's External ID can be set on the Edit User page and synchronized through the external connectors. To save the information, click Save & Close. The SAML 2.0 Metadata will be validated and the entityID will be shown on the Configuration page. You can edit the SAML SSO configuration for the specific Identity Provider by clicking the pencil icon.
- Sign In URL: This option is only available when the manual sign in is disabled. Set this value to a URL that you want to direct users to when they try to access Jira Align and are not signed in. Use the token %AC-URL% in the URL to include the Jira Align requested URL in the redirect.
- Sign Out URL: Set this value to a URL that you want to direct users to when they click Sign Out.
- Privacy Policy URL: Set this value to a URL that you want to direct users to for your organization's privacy policy information. The link to this URL will display as the Privacy Policy link at the bottom of the Help slide-out.
Join the Atlassian Community!
The Atlassian Community is a unique, highly collaborative space where customers and Atlassians come together. Ask questions and get answers, start discussions, and collaborate with thousands of other Jira Align customers. Visit the Jira Align Community Collection today.
Need to contact Jira Align Support? Please open a support request.