I have created Active Directory Security groups that get push to Azure then to Atlassian for access for all users. Can I stop using the default groups or remove them and or take all users out of them and just use my AD Security groups?
You do not have to use the jira-administrators group to grant and manage global Admin permissions. I'm on server and use AD groups in place of the default groups.
I would recommend leaving jira-administrators in the default global permissions with at least 1 user from the internal directory as a member as a fail-safe in case your Azure integrations are not available for whatever reason.
Thanks for the reply. I never thought about using it as a fail-safe. Great idea. I am currently want to remove the list of users from each default group and only utilize our AD groups for licensing and access. It seems they are not removable though. Just looking for best practice for our instance.
I have to admit I haven't used Cloud with Azure so this may be intended functionality to freeze out the administration of the local groups once you're integrated. My experience is all in a Server deployment.
Regardless, having redundancy in your admin groups permissions is generally a good thing for the reasons I mentioned.
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events