admin.atlassian.com > User management > Invite users
POST /rest/api/3/user with {"emailAddress": "...", "displayName": "...","products": [...]}
admin.atlassian.com > User management > Groups > [group] > Add members
admin.atlassian.com > Products > [product] > Access
admin.atlassian.com/o/{orgId}/users and can log inGET /rest/api/3/search?jql=assignee={accountId} to find open issuesGET /wiki/rest/api/user/{accountId}/property to find owned spaces/pagesProject settings > People > Change lead
Space settings > Overview > Edit space details
Jira > Issues > Bulk change
User management > [user] > Managed content
admin.atlassian.com > User management > [user] > Groups
admin.atlassian.com > User management > [user] > Deactivate
DELETE /rest/api/3/user?accountId={accountId}
GET /rest/api/3/user?accountId={accountId} returns "active": false
admin.atlassian.com > User management > Groups > Create group
POST /rest/api/3/group with {"name": "..."}
GET /rest/api/3/group/member?groupName={name}
Jira Permission Schemes (Jira Settings > Issues > Permission Schemes):
Confluence Permission Schemes (Confluence Admin > Space permissions):
Best Practices:
admin.atlassian.com > Security > SAML single sign-on > Add SAML configuration
admin.atlassian.com > Security > Authentication policies > Enforce SSO
admin.atlassian.com > User provisioning > [IdP] > Enable SCIM
saml.login.success eventsadmin.atlassian.com > Security > Audit log > filter: SSO
marketplace.atlassian.com
admin.atlassian.com > Billing > Manage subscriptions
admin.atlassian.com > Products > [product] > Apps > Find new apps
GET /rest/plugins/1.0/ and health check passesJira (Jira Settings > System):
Project settings > Archive project
Jira Settings > System > Indexing > Full re-index
Jira Settings > Issues > Workflows
Jira Settings > System > System info
Confluence (Confluence Admin > Configuration):
Space tools > Overview > Archive space
Confluence Admin > Orphaned pages
Confluence Admin > Cache management
Monitoring Cadence:
admin.atlassian.com > Products > [product] > Health
Common Integrations:
Jira Settings > Apps > Slack integration — notifications for Jira and ConfluenceJira Settings > Apps > DVCS accounts — link commits to issuesadmin.atlassian.com > Apps > Microsoft Teams
zoom-for-jira
salesforce-connector
Configuration Steps:
Jira Settings > System > WebHooks > [webhook] > Test
Jira Settings > Issues)Issue Types: Create and manage org-wide issue types; define issue type schemes; standardize across projects
Workflows: Create global workflow templates via Workflows > Add workflow; manage workflow schemes
Custom Fields: Create org-wide custom fields at Custom fields > Add custom field; manage field configurations and context
Notification Schemes: Configure default notification rules; create custom notification schemes; manage email templates
Confluence Admin)Blueprints & Templates: Create org-wide templates at Configuration > Global Templates and Blueprints; manage blueprint availability
Themes & Appearance: Configure org branding at Configuration > Themes; customize logos and colors
Macros: Enable/disable macros at Configuration > Macro usage; configure macro permissions
admin.atlassian.com > Security)Authentication:
Security > Authentication policies > Edit
Security > Session duration
Security > API token controls
Data Residency: Configure data location at admin.atlassian.com > Data residency > Pin products
Audit Logs: admin.atlassian.com > Security > Audit log
GET /admin/v1/orgs/{orgId}/audit-log
admin.atlassian.com > User management > Export users
Security > Authentication policies > Require 2FA
Jira: Project keys 3–4 uppercase letters (PROJ, WEB); issue types Title Case; custom fields prefixed (CF: Story Points) Confluence: Spaces use Team/Project prefix (TEAM: Engineering); pages descriptive and consistent; labels lowercase, hyphen-separated
Major Changes: Announce 2 weeks in advance; test in sandbox; create rollback plan; execute during off-peak; post-implementation review Minor Changes: Announce 48 hours in advance; document in change log; monitor for issues
Jira & Confluence: Daily automated backups; weekly manual verification; 30-day retention; offsite storage
Jira Settings > System > Backup system / Confluence Admin > Backup and Restore
Recovery Testing: Quarterly recovery drills; document procedures; measure RTO and RPO
Severity Levels:
Response Steps:
admin.atlassian.com > Products > [product] > Health and Atlassian Status Page)System Health: Active users (daily/weekly/monthly), storage utilization, API rate limits, integration health, response times
GET /admin/v1/orgs/{orgId}/users for user counts; product-specific analytics dashboardsUsage Analytics: Most active projects/spaces, content creation trends, user engagement, search patterns Compliance Metrics: User access review completion, security audit findings, failed login attempts, API token usage
Escalate to Atlassian Support: System outage, performance degradation org-wide, data loss/corruption, license/billing issues, complex migrations
Delegate to Product Experts:
Involve Security Team: Security incidents, unusual access patterns, compliance audit preparation, new integration security review
TO Jira Expert: New global workflows, custom fields, permission schemes, or automation capabilities available TO Confluence Expert: New global templates, space permission schemes, blueprints, or macros configured TO Senior PM: Usage analytics, capacity planning insights, cost optimization, security compliance status TO Scrum Master: Team access provisioned, board configuration options, automation rules, integrations enabled FROM All Roles: User access requests, permission changes, app installation requests, configuration support, incident reports
Admin operations are NOT available via the Atlassian Remote MCP server (bundled .mcp.json, server key atlassian). The canonical tool list (project-management/references/atlassian-mcp-tools.md) contains no tools for user/group management, permission schemes, field/workflow configuration, SSO, app management, or org settings. Never invent tool names — every admin workflow in this skill runs through admin.atlassian.com or the REST APIs cited inline above.
What MCP CAN contribute to admin work (read-mostly support):
mcp__atlassian__lookupJiraAccountId — resolve users to accountId before deprovisioning auditsmcp__atlassian__searchJiraIssuesUsingJql — find a leaver's open issues (assignee = <accountId>) for reassignmentmcp__atlassian__getVisibleJiraProjects / mcp__atlassian__getConfluenceSpaces — inventory inputs for access reviewsmcp__atlassian__atlassianUserInfo / mcp__atlassian__getAccessibleAtlassianResources — verify the acting identity and accessible sitesIntegration Points: