Skip to main content
Jira Connection

Making the initial connection to Jira and Jira Data Center, editing the connection, and optionally granting 'Write' access

Updated today

Connecting Jira to Drata allows for the automated checks and evidence collection to prove to auditors that your company follows its vulnerability management policy and procedures. You can also enable Write Access to create Jira tickets directly from Drata. Learn more about creating Jira tickets through Drata.

Prerequisites

Before you begin, make sure you meet the following requirements.

Connect Jira to Drata

You can connect multiple Jira accounts to Drata.

  1. In Drata, go to Connections in the bottom left navigation menu.

  2. Select the Available Connections tab and search for Jira, then click Connect.

    • You can choose Jira Cloud or Jira Data Center.

  3. Fill out the fields in the connection drawer.

    • Account Alias: Enter a name to help identify this Jira connection.

      • This is especially useful if you have more than one Jira account connected.

      • Enter a descriptive alias so that when you create tickets, you can select the correct Jira instance.

    • Source: Choose how Drata identifies relevant tickets. Learn more here.

      • Label

        • Enter the Jira label used to tag security-related tickets.

        • If no tickets are found, the related monitoring test, such as Test 26, will search by component or custom fields.

      • JQL (Jira Query Language)

        • Enter a JQL query that returns the expected tickets.

        • Drata does not validate JQL, so make sure it works in Jira before using it.

        • If the JQL returns no results, the related tests, such as Test 26, will pass by default.

    • Write access to Jira: Enable this to create Jira tickets (or tasks) directly in Drata.

      • The tickets created in Drata will be added to your selected Jira Project and will be linked to the applicable Control (DCF or Custom) or Test.

      • Learn more about creating tickets in Drata here.

  4. Authenticate and Connect (Jira Cloud).

    • Note: This step applies only to Jira Cloud users.

    • After you connect, you’ll be redirected to Jira to grant the required permission scopes:

      • read:jira-user

      • read:jira-work

    • Make sure you're signed into Jira and accept the permissions.

    • You’ll be redirected back to Drata after accepting.

  5. Authenticate and Connect (Jira Data Center).

    • Note: This step applies only to Jira Data Center users.

    • After you connect, you will have to enter the required items and select the required configurations:

      • Choose an authentication method:

        • Personal Access Token (recommended)

        • Username and password.

      • Review the data Drata needs to access.

      • Whitelist the IP addresses in your Jira admin settings:

        • Select your organization.

        • Navigate to Security > IP allowlists.

        • Select Create allowlist and add the following IP addresses:

        • 44.194.126.11  
          44.194.4.0
          3.232.227.174
          3.214.125.237
      • Provide your Jira domain:

        • Enter only the domain portion of your Jira URL.

          Example: If you log in at https://jira.acme.com/jira, enter jira.acme.com/jira.

      • Generate a personal access token:

        • In Jira, go to your profile.

        • Select Personal Access Tokens from the left-hand menu.

        • Click Create Token, name it, and copy the token to use in Drata.

Once your Jira connection is established, navigate to the Drata's Connections page and search for your newly connected Jira connection. Select the View button to edit the connection, enter an alias for the connection, update the 'Source', or toggling on or off the 'Write Access'.

Note: Drata verifies the values in the native Jira priority field. You will not specify a custom priority value in the connection drawer.

Monitoring tests covered

Did this answer your question?