Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

API Management

Bohlale Mashalaba
Bohlale Mashalaba
February 24, 2026

Manage API tokens for the organization. I want to block members from creating API tokens but want to centralize creation to allow members to use APIs created for them by Admin

Answer
Watch
Like Be the first to like this
114 views

4 answers

1 accepted

1 vote
Answer accepted
Bohlale Mashalaba
Bohlale Mashalaba
February 25, 2026

Might help someone who wants to limit API creation and Usage to specific users in org 
Best work around I can think of:

Have more than one Authentication policy

- First default one where you block API token access 

- 2nd would be for the specific users who actually need API access

This way you can have some semblance of control

Reply
2 votes
Jeroen Poismans
Jeroen Poismans
Community Champion
February 24, 2026

Hi,

In addition to the previous answer, you might want to take a look at Service Accounts:

https://support.atlassian.com/user-management/docs/manage-your-service-accounts/

This feature is exactly to be able to manage the API tokens without having a user taking up a license.

Reply
2 votes
Manne Kjærby - ProProces
Manne Kjærby - ProProces
Atlassian Partner
February 24, 2026

Welcome to the community.

Maybe this is what you are searching: https://support.atlassian.com/security-and-access-policies/docs/set-api-token-access/

It requires atlassian guard.

 

View More Comments
Bohlale Mashalaba
Bohlale Mashalaba
February 24, 2026

so I read this https://support.atlassian.com/security-and-access-policies/docs/authentication-policy-settings-for-your-organizations/#User-API-tokens

but it isn't exactly what I am trying to achieve, with authentication policies I can block members from creating API tokens, but I want to centralize creation and usage to make sure they comply with company standards 

we have approval processes that need to take place before APIs are created and used so that standard block would also block usage which would hinder dev work flow with like jenkins for example. 

Like
Reply
1 vote
Karan Sachdev
Karan Sachdev
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
February 24, 2026

Hey @Bohlale Mashalaba ,

Welcome to Atlassian Community!

Any user can create API tokens under their Atlassian account: https://id.atlassian.com/manage-profile/security/api-tokens

This is a user level functionality, and admins can't restrict users from creating API tokens under their personal accounts.

However, as @Manne Kjærby - ProProces shared, if you have a Guard subscription, you can control if external users can use their API tokens to access the information from your site.

If allowed, they will only be able to access the information that they have access to. For example, if I don't have the project level permission to view a work item in Jira, I won't be able to access it via API as well.

I hope this helps!

Thanks!

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
DEPLOYMENT TYPE
CLOUD
PERMISSIONS LEVEL
Product Admin
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2026 Atlassian
    Privacy Policy Notice at Collection Terms Security