Jira Ticketing

Jira integration lets Sysdig users open Jira tickets within the Sysdig Secure UI and assign them to team members directly. The webhook-based option that was previously used to integrate Jira with Vulnerability Management has been replaced by an API-based method that allows for multiple Jira instances and projects.

Configure Jira Ticketing Integration

Prerequisites

  • The API token must be created by the same User you input when creating a new Jira Ticketing Integration.
  • The best practice is to set up the integration with a service account email rather than an individual’s email.

Required Permissions

The Administrator with the Jira API token who is setting up the integration must have the following:

  • Permission to access Jira.
  • Administrator Jira global permissions, or at least:
    • Permissions to create issues in the Jira project associated with Sysdig.
    • Permissions to create attachments in the Jira project associated with issues coming from Sysdig.

The Sysdig user who will create tickets in the UI must have one of the following:

  • Administer Jira global permission
  • Browse Projects permission for the Jira project associated with Sysdig
  • Administer Projects permission for the Jira project associated with Sysdig

Set Up Jira Integration

  1. Log in to Sysdig Secure as an administrator and open Ticketing Integrations through Integrations or Settings.

  2. Click Add Jira Integration or Add Integration.

    The Connect Jira Account window appears.

  3. Specify the following:

    • Integration Name: A relevant name for the integration.
    • Atlassian Cloud URL: Your Jira account URL. For example, https://myaccount.atlassian.net
    • Email: The email address of the API token holder, which matches the email used in the Jira Cloud account.
    • API Token: The Jira token you have generated. Follow the links in the wizard if you do not have a token.

  4. Click Next and in Customize Project Settings tab specify the following:

    • Project: Select your project from the dropdown.
    • Issue Types: Select Epic and at least one other type. See the infobox below for more information.
    • Issue Hierarchy: Select the default parent and child ticket in the hierarchy of issue types.
    • Teams: Choose whether this integration applies to particular teams, or to all teams on your account.
    • Jira Assignee: Optionally, select the default assignee(s).
    • Labels: Optionaly, select labels for the tickets.

Jira issue types are hierachical, and correspond to the following values:

  • Epic: 1
  • Story, Task and Bug: 0
  • Subtasks: -1

When selecting issue types in the wizard, ensure two sequential levels are represented. For example, you can select Epic, Story, and Bug, but not just Task and Bug.

  1. Click Next and in the Map Statuses tab, map Sysdig’s three ticket status types to the Jira statuses Open, In-Progress and Resolved as desired.

  2. If needed, assign custom field to the appropriate issue type in the Select Custom Fields tab.

  3. Click Save.

The Jira integration will be listed on the Ticketing Integration page with an Active status.

Test the Integration

To use the integration, open the Sysdig Secure Home page and check an Vulnerability Management (VM) Remediation recommendations, as described in Open JIRA Tickets from Identity Recommendations.

Legacy Jira Integration

  1. Log in to Sysdig Secure as an administrator and open Settings > Ticketing Integrations.

  2. Select Jira.

    The Connect Jira Account window appears.

  3. Specify the following:

    • Integration Name: A relevant name for the integration.
    • Atlassian Cloud URL: Your Jira account URL. For example, https://myacount.atlassian.net.
    • Email: The email address of the API token holder, which matches the email used in the Jira Cloud account.
    • API Token: The Jira token you have generated.

  4. Click Save.

    The Jira integration will be listed on the Ticketing Integrations page with Active status.