Sometimes you need to use regular issues' fields like description or comments to store the password and any other fragile data. What would be your best choice to do this?
It's not a good practice to include any credentials in plain text anywhere, even with special security settings.
BitWarden and 1Password also both offer very nice secure sending of creds outside your org.
Agree, you should never store any passwords or sensitive information in an application that is not meant for that purpose and designed to secure it properly.
Personally I use LastPass and then notate how the password is stored in the ticket. We do not even transmit that type of information via a ticket as it is not easily removed or cleaned from the system, risk is too high for it to be retrieved without authorization, etc.
Agreed all around. Links to something secure with access control. KeePass and lastpass are great.
As an alternative, A web link to a box/dropbox/onedrive file is dramatically less secure than the above, but at least you would have 2FA and better permissions control. I don't recommend this, but it's still better than plaintext in jira that you could literally search instance wide in seconds.
Recommended Learning For You
Level up your skills with Atlassian learning
Learning Path
Jira Administrator
Configure Jira Software, Jira Core, or Jira Service Management, including global settings, permissions, and schemes.
Managing Jira Projects Cloud
Learn to create and configure company-managed projects in Jira Software and partner effectively with Jira Admins.
Managing Permissions in Jira Cloud
Sharpen your skills at configuring and troubleshooting permissions in Jira Cloud with this free course.