Jira Server and Data Center Integration

Push Cobalt findings to your Jira Server or Data Center.

Learn how to integrate Jira Server or Jira Data Center with Cobalt. The availability of this feature depends on your PtaaS tier.

If your organization uses Jira Cloud, see Jira Cloud Integration.


Required permissions:

Step 1: Connect the Jira Plugin

  1. In Cobalt, go to Integrations > Jira.
  2. Under What type of Jira setup are you using?, select Jira Server.

    Select to configure the integration with Jira Server in Cobalt
  3. Follow the instructions in the UI to install and connect the Cobalt for Jira DC/Server plugin.
  4. Return to the Cobalt app, and check the integration status. You should see your Jira instance on the Jira Integration page.

    Jira integration status in Cobalt

Step 2: Configure the Integration for a Pentest

  1. In Cobalt, go to Integrations > Jira > Configuration. Here, you can see pentests for which you can configure the integration.
  2. For the desired pentest, select the gear icon Gear icon.

    Select a pentest for which you want to configure the Jira integration
  3. In the overlay that appears, configure integration parameters:
    • Jira Project
    • Issue Type
    • Labels to add to Jira issues

      Configure Jira integration parameters for a pentest
    • State Mapping (Jira to Cobalt): Map Jira issue statuses to Cobalt finding states.

      Map Jira issue statuses to Cobalt finding states
  4. Select Save.

How the Integration Works

Here’s what to expect once you’ve enabled the integration for a pentest:

  • The Auto-Push option is enabled for a pentest by default. When a new finding in the Pending Fix state is reported, a new issue is automatically created in Jira. Learn more about how auto-push works.
  • Pentest Team Members can push findings manually—if they’re not already synchronized. Learn how to push findings manually.
  • Jira issue statuses are synchronized with Cobalt finding states according to your mapping settings.

You can manage Jira connections for specific pentests:

  • View the connection status in Integrations > Jira > Configuration. Here, you can see the last synchronization time.
  • Adjust the configuration for specific pentests if needed.

Learn how finding parameters are mapped between Cobalt and Jira.

Attachments Support

You can add attachments to Cobalt findings. To ensure that attachments are created properly on the Jira Server, verify the following:

  • On the machine where Jira Server is installed, locate your $JIRA_HOME directory. Follow the Atlassian documentation on how to locate the Jira application home directory.
  • The user must have permissions to:
    • Create a $JIRA_HOME/import/cobalt directory.
    • Read and write files within the $JIRA_HOME/import/cobalt directory.

Delete the Integration

You can delete the integration with Jira.

  1. In Cobalt, navigate to Integrations > Jira, and then select Delete.

    Delete a Jira integration in Cobalt
  2. In the Jira admin panel, uninstall the Jira plugin.

Here’s what to expect once you’ve deleted the connection:

  • Data synchronization between Cobalt and Jira stops.
  • All Jira configurations for specific pentests are deleted. If you decide to reestablish the connection, you need to reconfigure the integration for each pentest.

Was this page helpful?

Create an Issue

Last modified August.08.2023