How to Set Up Two-Factor Authentication (2FA) for Jira

Pre-requisites for Setting Up 2FA

Before configuring the miniOrange Two-Factor Authentication (2FA) App for Jira, ensure you have the following:

• Jira is installed and configured on your system.
• Supported versions: Jira Server 8.13.0 - 10.0.1, Jira Data Center 8.13.0 - 10.0.1
• Admin credentials for Jira.
• A valid Jira Server or Data Center license.

Download And Installation

• Log into your Jira instance as an admin.
• Navigate to the Settings menu and click on Manage Apps.
• Click on Find new apps or Find new add-ons from the left-hand side of the page.
• Use the search function to find mO Two-Factor Authentication (2FA) for Jira.
• Click Try free to start a new trial or Buy now to purchase a license for the plugin.
• Enter your information and click Generate license when redirected to MyAtlassian.
• Click Apply license to complete the installation.

1: Configuring miniOrange 2-Factor Authentication

Follow these steps to configure and enable the miniOrange 2FA app for your Jira users:

• Choose 2FA Methods: The miniOrange 2FA add-on offers users a range of 2FA methods, including OTP, KBA, TOTP, and more, for authentication. You can enable the desired 2FA methods from the provided list during plugin configuration. To enable the chosen methods for your users, you just have to select the 2FA Method option and toggle it active.


• Enable Backup Method:To ensure access during emergencies or when users cannot access their primary 2FA method, our app also provides you with a backup authentication method. You can choose any of the listed 2FA methods as your backup by selecting the Backup Method option and toggling it active.

• Select Users to Enforce 2FA: Once the required 2FA methods are enabled, select the users who will be required to use 2FA.
• Use the Enable 2FA/MFA for All Users option to apply 2FA to all existing users and automatically enable it for newly created users.

• You can customize the 2FA settings based on your requirements. Enable, disable, or skip 2FA for users or groups individually, in bulk, or based on their IP addresses.

• Enable 2-Factor Authentication: Finally, enable 2FA for Jira Software or Jira Service Management as needed.
• The 2FA for Admin Access feature enhances security for admin-level operations in Jira. After WebSudo password validation, admins must complete a 2FA step to ensure protection.

2: How the users can configure 2FA methods

3: Advanced Security Features

3.7: Access to Plugin Pages

By default, only administrators have access to the plugin pages. This feature allows you to define and customise access permissions for specific user groups, granting them the ability to view and manage designated plugin pages.
By configuring access settings, you can ensure that the right users have the necessary permissions to perform their tasks, enhancing collaboration and security within your organization.
To enable this, admins need to:

• Navigate to the Advanced Options Tab and scroll down to the Access to Plugin Pages section.
• Next, specify the Page, Group Name, and Access Type from their respective drop down lists.
• To add more access permissions, click on Add New Access and follow the same process.