Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Issue-level security

Hello everyone!!, 

In my company we need that each user associated with a group of users ONLY see the incidents assigned to the group or the user, try to configure this in the security scheme but every time I enter with a user of a specific group I see ALL the incidents, What am I doing wrong?

I have attached configurations, assign security to a group and the user responsible for the group.

Thanks for your attention.

Captura de Pantalla 2019-10-04 a la(s) 13.10.40.pngCaptura de Pantalla 2019-10-04 a la(s) 13.12.22.png



2 answers

Issue level Security is set Per issue. Make sure that your issues have the "Security Level" field set to the issue security level that you want. This also means

  • You need to have your project set to use the issue security scheme that you created.
  • You need to have the issue security field in your field config
  • the issue security field needs to appear on a screen somewhere so you can set it

The default for issue security is usually none, so you have to set it on each issue, or bulk edit. You can set the default in the scheme and then that will be the default going forward.

Hi @Danilo Scopigno ,

Do you have assigned the issue security level to all issues. If not, you will be able to see all issues without a level assigned.

Is grupo de desarollo a specific group or is it a custom field containing a group?

If it is a group and you are a member of that group, you will also be able to see all issues.

How do you assign an issue to a group? With an custom field? You can add that field to the security level, that should work.

Thanks bastian for the quick response, how do I assign them?


I have 3 types of incidents assigned to all requests,


If I assign that level of security to a type of problem, will this cause an administrator user not to see that type of incident?


the incident filter is done by assigning a user that belongs to the group (it is a unique user that manages the sector and is a user of jira helpdesk

To assign a security level, you need the issue security field (I think it was called security level). You must set the issue security level on every issue of that request type.

Yes, if you set the issue security level and the Administrator is not in the group, he is not able to see the issue.

If you want your customers to see such issues in their portal, you also have to add customer portal access to the security level. 

I understand thanks Bastian,

From what I understand, the security levels allow you for each group of users to see a certain type of request, BUT, does it not allow the same type of request to have 2 levels?

In my company there are 2 different groups: integrations and development, which see all types of requests, but I wanted to ONLY see that incident if they are assigned to them.

How can I do it?

because jira helpdesk does not allow users to have different incident queues, they always share all the queues

Each issue can have only one security level assigned. 

So you must define different levels if you want different people to see the issue.

Or you have to use s group picker field or something like that where you can select the groups that should see the issue.

In your case, that means you want integrations to see all issues and development only the issues that are assigned to them? Is that right?


The there are two ways, I think


1) define two security levels. One level with the integration group only  one with integration and development. When the issue is assigned to development, the security level must be set to second level.

2) define one security level. Add the integration group and add a group picker field. When the issue is assigned to development, the development group must be selected in the group picker field.


I don't think that there is an easier solution for this.

Thank you Bastian! for your help,

set the first option you told me (1) define two security levels. One level with the integration group only  one with integration and development. When the issue is assigned to development, the security level must be set to second level.)

I created two levels issue security for two groups: integraciones and desarrollo.

issue level security.png

so, i want that the two groups can to see all type request but only
when the incidents are assigned to the responsible users of each group.
What would I have to put in each request?

here an example:

Captura de Pantalla 2019-10-05 a la(s) 19.07.28.png

Captura de Pantalla 2019-10-05 a la(s) 19.09.06.pngThank you for your great help!


sorry for the delay. You have to add the Security Level field at first to the screen and after that to the request. It will appear in the lower section of the fields. There you can set the Security Level that should be used for this kind of Requests as default.

Thanks for you response, 


When to said " add the security level field" , Do you mean these fields?

Captura de Pantalla 2019-10-08 a la(s) 13.13.06.png

why the field:  Security Level field, I can't find it in the data set to add it to the screen and then to the request.

Captura de Pantalla 2019-10-08 a la(s) 13.17.22.png


I'm not sure what the security level is in your language, probably something like seguridad. But you must add it to the screen before you can add it to the request type. 

Hi!!, In English,

what is his name?

In spanish, i didnt find his name how "seguridad",

:( thank u !

The name is security level in English.

If you can not find it in the request type configuration, go to issues->screens and the select the screen you are using for the issue type. Add the security level there.

Then go to the request type configuration and you can add the field there also.

Hello Bastian, Thank you for you response, 

In the project I already have a set the security levels that you told me

Captura de Pantalla 2019-10-12 a la(s) 13.47.34.png

Add field security in screen type request, but it doesn't let me set the levels:

Captura de Pantalla 2019-10-12 a la(s) 13.49.59.png

Captura de Pantalla 2019-10-12 a la(s) 13.51.10.png

Captura de Pantalla 2019-10-12 a la(s) 13.52.14.png

what am I doing wrong??

Sorry , 

there it solves it add the administrator group to the 2 types of groups

Captura de Pantalla 2019-10-12 a la(s) 14.03.12.png

Integracion is default,


How do I have to set the request types so that depending on the assigned user, a group (integracion) or desarrollo sees it?


Thank U!! 

Without other add-ons, you will have to set the right level when the issue is assigned to the user.

If that does not depend on the request type, I would set there the first level, where both groups can see the issue.

When it is assigned to someone from integrations, set the security level to that level although. 

If you want to do this automatically, you will need some kind of add-on like script runner or automation. 

Like Danilo Scopigno likes this

Suggest an answer

Log in or Sign up to answer
Community showcase
Asked in Jira Service Desk

Calling all Insight users, we need your help!

Hello Insight users,  As part of our (Mindville's) acquisition by Atlassian, our training team is looking to build some new Insight training materials. It would really helpful if you can ...

147 views 1 0
View question

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you