Security settings

To manage security settings:

1. Select the Settings gear  in the top navigation bar.
2. On the left side of the page, select Platform in the Settings section.
3. Select the Security tab.

Use these options to configure security settings for your work:

• Server Name or IP: This setting must be configured for navigation from email to the application.

• Password settings: The following settings are available when using Manual sign in as the Authentication method, or when using SAML single sign-on (SSO) as the Authentication method with the associated Disable Manual Sign In setting set to No:
  • Minimum Password Length: Controls the minimum length of a password. The minimum value is 8 characters.
  • Minimum Password Uppercase: Controls how many uppercase characters are required in the password. The minimum number of uppercase characters is 1.
  • Minimum Password Numeric Characters: Controls how many number characters are required in the password. The minimum number of numeric characters is 1.
  • Temporary Links Expiration (Hours): Controls the time limit during which the links to reset a password or to get a new user account are valid. The minimum value is 1 hour. The maximum and default value is 24 hours.
• Session Timeout (Minutes): Controls the session timeout. If you have multiple tabs open and are working in one of them, none of them will time out. If you do not work in any of them for longer than the set timeout and one tab times out, all will time out.
• Enable Touchscreen: Turns on or turns off the touchscreen capability.
• Enable Jira Align API tokens: Controls the ability for users to create or use API tokens provided by Jira Align. Set this option to No if you do not use the Jira Align API.
  Note: This setting will not display when Atlassian Guard is set as your authentication method. Only Atlassian API tokens are supported.
• Authentication method: Select one of three methods for users to authenticate with Jira Align:
  • Manual sign in: Users will log in through the default login screen for Jira Align.
  • SAML single sign-on (SSO): Configure logins through your SSO provider. See additional options below. 
  • Atlassian Guard: Allow users to log in using their Atlassian account credentials. Review Atlassian Guard authentication for more details.
• Auto-populate Atlassian account ID (AAID): This setting displays after selecting Atlassian Guard in the Authentication method setting. To prevent account lockouts, we recommend keeping the default option of Yes.
  • When set to Yes, Jira Align will automatically populate AAIDs into the External ID field of each user's profile in Jira Align on their first login. Note: Any previous entries in the field will be overwritten. You may have entered data into the External ID field to link accounts with a SAML single sign-on (SSO) provider.
  • If you would like to change this setting to No, locate each user’s AAID, and enter it into the External ID field of their Jira Align profile.
    Important! Enter your AAID into your user profile before changing this setting. Users who do not have a valid AAID present in their profile will be locked out of Jira Align.

The following options are available when SAML single sign-on (SSO) is selected in the Authentication method setting:

• Disable Manual Sign In: Controls if the users can access the application by manually signing in through the login page or by using the SSO. The default value is set to No. When the manual sign in is disabled by selecting Yes:
  • Password settings are not available.
  • The Resend Password link in user properties in User details on the people page and in user’s profile is disabled.
  • Login page is not available for users.
  • Users created while the manual sign in is disabled do not receive a New User Setup email.
• SAML 2.0 Identity Providers: Allows you to use a SAML 2.0 Identity Provider to implement SSO. To add your SAML 2.0 Identity Provider, click Add SAML Provider, then copy and paste the SAML 2.0 Metadata XML. Under NameID Lookup By, select whether you want to use the Email or External ID field to authenticate Jira Align users by. User's External ID can be set on the Edit User page and synchronized through the external connectors. To save the information, click Save & Close. The SAML 2.0 Metadata will be validated and the entityID will be shown on the Configuration page. You can edit the SAML SSO configuration for the specific Identity Provider by clicking the pencil icon.
• Sign In URL: This option is only available when the manual sign in is disabled. Set this value to a URL that you want to direct users to when they try to access Jira Align and are not signed in. Use the token %AC-URL% in the URL to include the Jira Align requested URL in the redirect.
• Sign Out URL: Set this value to a URL that you want to direct users to when they click Sign Out.
• Privacy Policy URL: Set this value to a URL that you want to direct users to for your organization's privacy policy information. The link to this URL will display as the Privacy Policy link at the bottom of the Help slide-out.