Hello,
I need to know if Jira v8.5.1(Jira core), supports secure authentication? It's current using simple authentication and will need to know if Jira will support secure authentication for audit/compliance.
Hi Michael,
this can be answered from different angles but the question as to SSL encryption of the connection to Jira is a good start and very appropriate and desirable.
Authentication can be done in several ways, though. Unless you are going with an internal directory (local user authentication) many companies will use a LDAP server (centralized directory) or MS Active Directory.
When doing so pay attention to an encrypted connection also to this directory.
Here is some further documentation:
https://confluence.atlassian.com/adminjiraserver079/configuring-user-directories-950288323.html
All of it can be done right or in insecure ways - as always. For example: the best SSL encyrption towards your Jira server is useless if the Active Directory server (Domain Controller) is not patches and gets hacked - but this only to draw a worst case scenario.
As a more general page I also encourage you to take a look into Security documentation:
https://www.atlassian.com/trust/security
Please let Community know in case of specific questions or if something left unclear.
Cheers,
Daniel
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.