Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Next challenges

Recent achievements

  • Global
  • Personal

Recognition

  • Give kudos
  • Received
  • Given

Leaderboard

  • Global

Trophy case

Kudos (beta program)

Kudos logo

You've been invited into the Kudos (beta program) private group. Chat with others in the program, or give feedback to Atlassian.

View group

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Can Jira Align users see issue level detail when they should not have that type of access?

We have two instances: one is General and one is InfoSec. We DO want managers to be able to see metrics for both instances in Jira Align. We DO NOT want (some) managers to see issue level detail for the InfoSec instance. The InfoSec instance has confidential, sensitive and secure content that not everyone should be able to see. I am hoping that we can do this at the permission level somehow. For example, the person in charge of technology could drill down and see info at the issue level. However, a manager at from the General instance could see metrics but not at the issue level.

Issue level: defined as the description and the comments. Summary should be okay. 

1 answer

0 votes
Mark Cruth Atlassian Team Nov 19, 2020

Hi @Suzanne Seaton ! Thanks for the question! When you say two instances...is that two Jira instances connected to Jira Align? Also, how is the data structured into Jira Align (for General and InfoSec)...Programs, Portfolios?

Based on what you shared, the only approach I can think of is that these managers could have a system role that doesn't give them access to see the particular issue type. For example, if the issues are "Stories", you could setup the system role so that the role cannot see any stories. Managers assigned to this role could see the rollup of story data in reporting, and the title if the story rolls up to a feature, but they wouldn't be able to open the issue to see the details or see the Story Grid. The only problem with this is approach is that a system role is universal (in this example, if the person had the role we setup they would not be able to see any stories in the system). 

You might be able to leverage Team Membership to help govern this, but the only way to really prevent someone from viewing issue details using this approach would be to leverage separate portfolio structures. Is the General and InfoSec work in the same Portfolio within Jira Align?

Hey @Mark Cruth , thanks for your reply! Yes, this is two instances (or possibly more) connected to Jira Align. I believe it will be the same Portfolio within Jira Align but I am not positive; just learning. This is for Wells Fargo, we have ~ 60,000 Jira users and then managers on top of them, and we need to keep our InfoSec issue level detail private from the General managers. Thanks!

Mark Cruth Atlassian Team Nov 20, 2020

If they are in the same portfolio I think the initial option may be the best bet. I know the Solutions Architect from Atlassian working with your organization and will let him know to reach out to you on this topic (you two can go deeper and play with a few more potential options). Good luck!!!

Like # people like this

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Jira Align

Best Practices in Jira Align

Hello Jira Align customers! In order to better serve you on your journey with Jira Align, the Community team has worked with the Jira Align team to curate the content in this collection to better s...

637 views 1 11
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you