Build safer, smarter integrations with service accounts

This is a much-needed enhancement for enterprise-grade governance!
 
Introducing service accounts brings clarity, control, and accountability to integrations specially in environments with strict audit, compliance, and access policies.

Being able to assign API tokens to non-human accounts and monitor usage independently of personal user tokens is a game changer for scaling automation and maintaining security hygiene.

Looking forward to seeing broader adoption across products and additional controls like expiration policies and permission scopes. Great work, Atlassian! 

This is a great article to give a head start for service accounts!

Thanks for sharing @Sophie Jasson-Holt 🙂

This was a great surprise for us, when we found it yesterday. A feature we've been sorely missing for years.

Are there any plans to let us provision service accounts?
We control all other accounts through EntraID and all license/access giving groups are also provisioned.
So while Service Accounts are a much welcome addition, the current implementation does cause some friction with our setup and way of working.

HI @Sophie Jasson-Holt 

This is a really nice and long needed addition!

Unfortunately I cannot find an API endpoint to manage service accounts. When will it be available? 

Hello @Sophie Jasson-Holt -

Is this available to organizations that are not on Centralized User Management? We were unable to migrate to Vortex due to number of users and groups, and I do not see the new option for Service Accounts.

Hrm. Ok, so as of Aug 11, I guess this is still "Rolling Out":

• Atlassian Cloud changes Aug 4 to Aug 11, 2025 

Curiously, in App updates in our admin.atlassian.com console, it says "ROLLOUT COMPLETE":

We are anxious to get this feature, so hopefully not having Vortex is not a blocker.

This is awesome! One issue I noticed is that you can't view the scopes applied to an API token post creation. Having this ability (like can be done with user specific API tokens) would be really helpful.

Hi @Gary Spross (Personal) - Thanks for feedback. I am the Product manager on this feature , and I hear you . We will revamp our designs for our next milestone, and will take this into consideration. 

Hi @Darryl Lee - yes , We are currently on track to release this feature for non-centralized by end of October. So you'll have service accounts . 

Hi @Jared Schmitt  - Yes, we are going to update the dev docs soon. ( by next week )

Hi @Rune Rasmussen  - We currently do not support SCIM sync . But this is something on our future milestones. 

I could not use the service account for REST APIs, I have:

1. created a service account.
2. related it to jira app (user)
3. added all the simple scopes (not granular)
4. added it to all the jira related groups.
5. created a token

using postman, adding basic auth for user: the service account email, password the token, when hitting: 

https://[org].atlassian.net/rest/api/2/mypermissions?permissions=BROWSE_PROJECTS%2CEDIT_ISSUES

I got the response:

{
    "permissions": {
        "BROWSE_PROJECTS": {
            "id": "10",
            "key": "BROWSE_PROJECTS",
            "name": "Browse Projects",
            "type": "PROJECT",
            "description": "Ability to browse projects and the issues within them.",
            "havePermission": false
        },
        "EDIT_ISSUES": {
            "id": "12",
            "key": "EDIT_ISSUES",
            "name": "Edit Issues",
            "type": "PROJECT",
            "description": "Ability to edit issues.",
            "havePermission": false
        }
    }
}

https://[org].atlassian.net/rest/api/3/issue/[ticket id]

{
    "errorMessages": [
        "Issue does not exist or you do not have permission to see it."
    ],
    "errors": {}
}