Hi, I need some help with Security Schemes and permissions.
I have 2 groups of people: JSM agents (IT) and Change agents (Business).
I have 3 Issue Types: Service Request, Incidents & Changes.
Within my JSM company managed project, my JSM agents must be able to create, edit, close, delete all work items.
Within this same JSM managed project, the Change agents must only be able to create, edit and close Change issue type work items.
I have allocated JSM licenses to both groups of people. The JSM agents are added as people directly in the project and given Service Desk Team roles.
I created a Security Scheme with 2 levels of security:
In the Change request type, I added these restrictions:
Under project permissions, I have added my Change group into the below permissions:
What role do I give the Change agents group in the project when I add the group?
I have added the group before and given them Service Desk Team role, but when I do, my test user is still able to see all the issues, not just the Change ones.
What am I doing wrong?
I followed these instructions as best I could, but some of it wasn't very clear and it still didn't work.
https://support.atlassian.com/jira-service-management-cloud/docs/create-security-levels-for-issues/
The Service Desk customer comes out of the box. you might have better luck by creating a new role with the same name Change agents.
https://support.atlassian.com/jira-cloud-administration/docs/manage-project-roles/
That way, you can assign the permissions to that role and the security scheme too.
And use only one security level to restrict that group.
Regards - Aaron
So I've tried again, and still no luck.
My user is called 'Datacom Intune Tester'. This account has a JSM agent license. The user is added to my Change Editors group. This group is a member of my JSM Project. The group has been given the SWISH Change agents role within the People & Access area.
I have added the role SWISH Change Agent to the project under the 'Service Project Agent' permission in my Permission scheme
I get this error when I run the 'permission helper'.
But since my user has a license and is in the group that has the Service Project Agent role assigned to it, I really don't know where I am going wrong.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hey @Kelly Phillips
Given that your only problem is that you still see all work-items then you need to create a security scheme where you set all users who can view the work-items and then attach it to the project.
Go to: System-> Work-Items-> Security Scheme and create a scheme for your project.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I have created a Security Scheme, and included a screenshot of it.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Online forums and learning are now in one easy-to-use experience.
By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.