Regarding access control, there is no doubt that we should follow our company's standard; for setting up a jira site, should we consider https (not just http) because we introduce Active Directory synchronization ?
Who should be handling this -
The use of HTTPS for accessing the Jira site can help prevent a number of possible attacks. Primarily, it would help prevent credential interception if someone has the ability on your network to see all the plain http traffic between Jira and the client.
This kind of configuration though is not something a project admin can do. This is something that a Jira System administrator would have to setup and configure.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.