Skip to main content

Jira on prem - integration issue - API keys vs Personal access token

  • May 6, 2025
  • 3 replies
  • 106 views
florinmircea
Forum|alt.badge.img+1

Hello,

  I'm unsuccessful in configuring the Jira integration ( On-prem instance ) in SecOps SOAR, receiving JiraError HTTP 403 url: .

  I believe the problem is related to API keys that the integration is expecting ( which works for Jira cloud ) versus  the PAT ( Personal access token ) that Jira on-prem offers by default .  I already checked the documentation https://cloud.google.com/chronicle/docs/soar/marketplace-integrations/jira , but there it mentions the API Key . As an example, Confluence integration has the PAT option ( https://cloud.google.com/chronicle/docs/soar/marketplace-integrations/atlassian-confluence-server ) . 

 Did someone managed to configure this Integration with Personal access token ? If not, are there any other ways of achieving this  out of the box ? ( Found online options with additional plugins , but I do not have admin access to Jira instance).

Thank you in advance.

3 replies

_K_O
Forum|alt.badge.img+12
  • _K_OBronze 5
  • Bronze 5
  • May 6, 2025

Hi @florinmircea

My team went through the Jira integration earlier this year. We created a service account for the integration and were able to use a remote agent to connect to the instance. 


For on-prem instances, you won't have the API key, but you can use the Username / Password combination for the connection which is why we opted for the Service Account instead of using an individual's credentials / PAT. 

"API Token, Note: This parameter can be used to contain the "Password" string in case of On-prem authentication, using username and password combination." 

    florinmircea
    Forum|alt.badge.img+1
    • florinmircea
    • Author
    • New Member
    • May 7, 2025

    Hello @_K_O ,

     

     Thank you for the answer. I figured that much, unfortunately it is not easy to request such an account ( process wise ) , considering basic authentication is seen as less secure ( https://developer.atlassian.com/server/jira/platform/basic-authentication/ ) . Considering Confluence integration supports Personal Account Token, was hoping that there is a way ( maybe in the future ) to have this available for the Jira integration as well.

    deep0x01
    Forum|alt.badge.img
    • deep0x01
    • New Member
    • May 30, 2025

    Hi @florinmircea

    My team went through the Jira integration earlier this year. We created a service account for the integration and were able to use a remote agent to connect to the instance. 


    For on-prem instances, you won't have the API key, but you can use the Username / Password combination for the connection which is why we opted for the Service Account instead of using an individual's credentials / PAT. 

    "API Token, Note: This parameter can be used to contain the "Password" string in case of On-prem authentication, using username and password combination." 


    We want to do the same. Sync the Jira with SOAR.
    How to make this job work? 
    all I see on job output is 
    - Finish synchronize comments from Google SecOps cases to Jira issues ---
    [2025-05-30,07:38:20,000 INFO] --- Start synchronize Issues Comments from Jira to Google SecOps ---

    But I see nothing on jira. How will jira id and soar case id connecT? 

    Terms & ConditionsCookie settingsAccessibility statement
    Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

    © 2025 Google. All rights reserved.