How do I remove edit comment access from administrators

+1

Pretty sure that is in reference to the Members role in Team Managed Projects.

I'm pretty sure that the permission overriding this is in the IN: Simplified Permission Scheme, as per screenshot below. I don't now how to find this though. I don't see a permissions option when I go to the team managed project settings, and it is not on the list when I go to admin/issues/permission schemes.

Hello @Marsha Miller 

Your second screen image shows the Permissions Helper screen and you have checked the permissions for a specific issue - DEV-###. Is DEV the key for issues in the InSite Development project? If it is, clicking on the IN: Simplified Permission Scheme link will just take you to the Access page of the project that you showed in the first image. Team Managed projects don't use Permission Schemes that you would see in the Administration / Issues / Permissions Schemes list.

The Administrator role and the Member role in Team Managed projects are built in roles provided by Atlassian. You are not able to modify the permissions granted to those roles.

If you want to remove the ability to edit all comments from administrators in a Team Managed project then you need to make a new project role in that project for administrators. You can create that role by copying the current Administrator role. Then modify the new role to disable the Edit Any Comment and Delete Any Comment permissions. Then assign all the users in that project that currently have the Administrator role to the new role, and remove them from being assigned to the Administrator role.

As per this document if your Site Admins are listed under the Administration Access for your Jira product, then they will have the Administer Jira global permission which will give them access to administer projects. I'm not sure that disabling the permission in a new project administrator in a Team Managed project will actually remove the permission for such users. Additionally, withe the global permission to administer project such users may be able to simply reassign themselves to the native Administrator role in TM project and regain that permission.

Your Site Admins should be your most trusted set of administrators. They should know when it is and is not appropriate to leverage these permissions. If they are leveraging those permissions inappropriately, then perhaps the real problem is that they should not be granted Site Admin access, or they need to be re-educated about how having such access comes with using it responsibly and cautiously.