Add Additional Users & Groups to Security for Confluence & Jira Cloud

Mohammed Davoodi
Mohammed Davoodi
September 25, 2025
September 29, 2025
Don't Be the Next Headline.
Download the free ebook and see proven strategies to prevent a data breach from real-world examples.
Graphic of the scanning app

We are thrilled to announce a significant update to Security for Confluence Cloud and Security for Jira Cloud: you can now grant app access to additional users and groups beyond just product administrators. 

This has been a heavily requested feature that has existed in our Data Center products for a while (including Security for Bitbucket), so we're excited to bring this functionality to our cloud products. Now, across the entire Soteri security suite, you have more granular control over who can view and manage secrets, PII, NPI, and more.

Why More Granular Permissions Matter

Previously, access to the Soteri Dashboard, settings and findings in our Cloud apps was limited to Jira and Confluence administrators. While this is a secure and consistent default, we understand that security is a team effort. Your infosec / DLP champions, compliance team leads, and project managers can all play a crucial role in identifying and remediating sensitive data.

With the new expanded access controls, you can empower your team by granting them the appropriate level of access. This means:

  • Ability to grant least privilege: You can delegate “App Administrator” permission to the exact users or groups who need it, without having to make them full Confluence or Jira administrators.
  • Cleaner separation of duties: Security/Compliance teams can review, triage, and configure scanning without waiting on platform admins.
  • Auditability and scale: You can centralize who can mark findings reviewed by using groups to keep access current as teams change.
  • Respect Jira / Confluence permissions: App Administrators are still only able to view findings for spaces and projects they have “View” access to, maintaining your existing access control rules.
  • Feature parity across deployments: For customers planning a move to Cloud following the Data Center end-of-life announcement, future migrations are made even easier as they can rely on the controls they’re already using.

How It Works

Granting access to additional users and groups is simple:

  1. As a Jira/Confluence Administrator or an App Administrator, navigate to the app's Settings page.
  2. In the “App access for additional users and groups” section, you can search for and add users and groups.
  3. Users and groups added here will become App Administrators, giving them the ability to:
  • View finding reports for spaces and projects they can view.
  • Mark findings as reviewed.
  • Change settings in the app's settings page.

You can also easily remove App Administrators by clicking the "x" icon next to their name.

An important note: App administrators will still only be able to see findings for projects and spaces where they have existing "Read" permissions. This ensures that your existing project- and space-level security settings are respected.

Available Now!

This feature is now live for all users of Security for Confluence Cloud and Security for Jira Cloud. We hope that these new access controls will help your team to be more effective in securing your Atlassian environment.

If you have any questions or feedback, please don't hesitate to reach out to our support team.

For more details on how to use this feature, check out our dedicated docs pages: