Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

User management without billing privileges

Todor Krasimirov Tsekov
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
October 17, 2024

Hello Community, Team, 

 

I have been looking for an answer to a question I presume a lot of organizations have. 

In our Atlassian environment with Jira, Confluence, OpsGenie and etc, I need to find (or create) a role with a very specific task. 

These users/group need to have the ability to suspend access to users and create access to users in our Atlassian products. Following the principle of Least Privilege, they are not to have Billing access or if they have, to not be able to modify it. 

 

TL:DR version is we need some accounts to have User Management role and rights, without giving him access to Billing. 

If we remove Org admin from an account - they can't access user management. We need these people to not be Org/Site admin, but have user management without elevating the role. 

 

Any ideas or practices would be greatly appreciated!

2 answers

0 votes
Ed Letifov [TechTime - New Zealand]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
October 17, 2024

Hi, @Todor Krasimirov Tsekov 

As others pointed out there is a role just like you want - User access admin.

While Samuel linked to documentation related to managing Customer accounts in JSM, this applies to all products: https://support.atlassian.com/user-management/docs/what-are-the-different-types-of-admin-roles/

You do need to be on the "Centralized User Management Experience":

The user access admin role is only available if you have the centralized user management.

If you are not yet on the new experience (i.e. are an older site) – raise a request with Atlassian support via https://support.atlassian.com

 

0 votes
Samuel Gatica _ServiceRocket_
Community Leader
Community Leader
Community Leaders are connectors, ambassadors, and mentors. On the online community, they serve as thought leaders, product experts, and moderators.
October 17, 2024

Hi @Todor Krasimirov Tsekov 

Welcome to the community!

You need to add the users to the User access admins role, this will only grant the users access to add/edit/remove users.

Ref: https://support.atlassian.com/user-management/docs/manage-jira-service-management-customer-accounts/

  • User access admins - They administer users and groups from admin.atlassian.com for a specific product in your organization. This role doesn’t grant access to the product.

Screenshot_1.png

Best regards

Sam

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events