Connecting Jira to Drata allows for the automated checks and evidence collection to prove to auditors that your company follows its vulnerability management policy and procedures. You can also enable Write Access to create Jira tickets directly from Drata. Learn more about creating Jira tickets through Drata.
Prerequisites
Before you begin, make sure you meet the following requirements.
Admin access to your company’s Jira account.
If you’re using Jira Data Center, additional setup is required. These steps are highlighted during the connection process and in the sections below.
Connect Jira to Drata
You can connect multiple Jira accounts to Drata.
In Drata, go to Connections in the bottom left navigation menu.
Select the Available Connections tab and search for Jira, then click Connect.
You can choose Jira Cloud or Jira Data Center.
Fill out the fields in the connection drawer.
Account Alias: Enter a name to help identify this Jira connection.
This is especially useful if you have more than one Jira account connected.
Enter a descriptive alias so that when you create tickets, you can select the correct Jira instance.
Source: Choose how Drata identifies relevant tickets. Learn more here.
Label
Enter the Jira label used to tag security-related tickets.
If no tickets are found, the related monitoring test, such as Test 26, will search by component or custom fields.
JQL (Jira Query Language)
Enter a JQL query that returns the expected tickets.
Drata does not validate JQL, so make sure it works in Jira before using it.
If the JQL returns no results, the related tests, such as Test 26, will pass by default.
Write access to Jira: Enable this to create Jira tickets (or tasks) directly in Drata.
The tickets created in Drata will be added to your selected Jira Project and will be linked to the applicable Control (DCF or Custom) or Test.
Learn more about creating tickets in Drata here.
Authenticate and Connect (Jira Cloud).
Note: This step applies only to Jira Cloud users.
After you connect, you’ll be redirected to Jira to grant the required permission scopes:
read:jira-userread:jira-work
Make sure you're signed into Jira and accept the permissions.
You’ll be redirected back to Drata after accepting.
Authenticate and Connect (Jira Data Center).
Note: This step applies only to Jira Data Center users.
After you connect, you will have to enter the required items and select the required configurations:
Choose an authentication method:
Personal Access Token (recommended)
Username and password.
Review the data Drata needs to access.
Whitelist the IP addresses in your Jira admin settings:
Go to admin.atlassian.com.
Select your organization.
Navigate to Security > IP allowlists.
Select Create allowlist and add the following IP addresses:
44.194.126.11
44.194.4.0
3.232.227.174
3.214.125.237
Provide your Jira domain:
Enter only the domain portion of your Jira URL.
Example: If you log in at
https://jira.acme.com/jira, enterjira.acme.com/jira.
Generate a personal access token:
In Jira, go to your profile.
Select Personal Access Tokens from the left-hand menu.
Click Create Token, name it, and copy the token to use in Drata.
Once your Jira connection is established, navigate to the Drata's Connections page and search for your newly connected Jira connection. Select the View button to edit the connection, enter an alias for the connection, update the 'Source', or toggling on or off the 'Write Access'.
Note: Drata verifies the values in the native Jira priority field. You will not specify a custom priority value in the connection drawer.