Last updated May 23, 2024

Cloud Admin Vocabulary

Active user / Active

Active is defined for MAU (monthly active users) as a user who views a product for at least 2 seconds, in the product UI at least once in a 28-day window. MAU is calculated from a “UI viewed” event that gets fired when a user interacts with a page/screen, with the exception of Bitbucket which also counts repo push/pull events.


A user who has administrative privileges. An admin also describes a permission and role name.

Admin API key

A unique identifier that an admin uses to authenticate when managing their organization using the admin APIs. Admins can update organization settings with the Organizations APIs and manage user accounts with the User management APIs.

Atlassian Administration

The term for the organization and site administration pages:

API token

A piece of code that contains security credentials. A user generates an API token from their Atlassian account to authenticate a script or other process with an Atlassian cloud product.

Atlassian account

A user's online profile or identity that exists independently of the Atlassian products they use. Users log in to their Atlassian account to access Atlassian cloud products and services, such as . Each Atlassian account has a unique email address.

Claimed account

An account that has been claimed by an organization as part of the domain verification process. Claimed accounts become managed accounts in the organization.

Deactivated accounts / Deactivated

A user account that no longer has access to the Atlassian account, products, and services. Only managed accounts can be deactivated by an admin.

Delete account

A permanent action that deletes a user. The content created by the user remains available. You can only delete managed accounts.


The top-level navigation object that hosts Accounts, Users, and Groups.


A name that identifies a realm of administrative autonomy, authority, or control with a common suffix or under the control of a particular organization or individual.

Email domain

The email domain that an admin wants to use for sending emails from products. The admin adds and verifies their email domain to set up DMARC (Domain-based Message Authentication, Reporting and Conformance) and customize sender's email address.


A collection of users that admins can use to easily manage permissions, content access, notification schemes, and roles.

Some groups are preinstalled with Atlassian products and admins can also create new groups. Admins manage groups in Atlassian Administration.

If you sync groups from an external user directory (e.g., Identity provider), you can manage groups from the directory too.


A user’s digital profile with a store of information about that user.

Identity provider

The external system where admins manage digital user identities, provide authentication services, and provision users to Atlassian products. Admins may connect one or more identity providers to an Atlassian organization.

Identity provider directory

A directory created by admins in an Atlassian organization to manage user identities and authentication services from an external identity provider.

Invite link / Invitation link

A sharable URL that gives anyone access to the product associated with the URL. Anyone with an invite link can share or use it to create an account and log in to the product. Invite links must be enabled for a product by an admin. These automatically expire after a set period of time.

Invited user / Invited

A user who has been invited to a site or organization. An invited user automatically becomes an active user.

Last active

The date when the user was most recently active for one product or across multiple products. The last active date does not take into account when the user logged into their account. Active date is defined as viewing a product for at least 2 seconds, in the product UI at least once in a 28-day window.

Managed account

An Atlassian account with an email address from a verified domain. Admins can apply organization-level security settings to managed accounts and change their profile.


A user that an admin adds to an object. That user becomes a member of the object. For example, an admin can add members to a group and an authentication policy.


The highest level of hierarchy and container for Atlassian sites and products. An organization is an entity in Atlassian’s cross-product architecture that represents an independently-operating customer, the people associated with that customer, and the data that the customer owns. Organizations are managed from

Organization admin

The user role for admins with access to organization-level admin pages.


A privilege granted to a user to take an action, such as the ability to view a page, edit a page, delete a page, or administer a space.


A container for rules or settings for a particular scenario. A security feature may allow an admin to create multiple policies so that different groups can have different settings.


A standalone Atlassian software application, sold through . Confluence and Trello are examples of products.

Product access

The permission granted to individual user accounts or via group membership that grants users access to a product. Users who are invited to a product also receive product access. Users with product access are billable for that product.

Restore account

A user account that regains access to products listed in Atlassian Administration. This action retracts the suspend user action.

Remove user

Permanently removes user access to products listed in Atlassian Administration.Users with emails whose domain is claimed can still be found in Managed accounts under Directory even after being removed.

Product URL

The unique URL for a product workspace. For Jira and Confluence, the product URL includes the site URL and the part of the path that indicates the product.


An open standard for exchanging authentication and authorization data between an identity provider (IdP) and a service provider, such as a cloud product. SAML is used when configuring single sign-on (SSO). SAML is an acronym for Security Assertion Markup Language.


A standard used when exchanging user identity information between systems. When an Identity Provider (IdP) is connected to the Atlassian organization, user accounts are created using this protocol. SCIM is an acronym for System for Cross-domain Identity Management.

Suspended user / Suspended

Temporarily suspends user access to products listed in Atlassian Administration. Maintains respective users in Groups for easy restoration.

Synced groups

Users whose details are synchronized between an external user directory or identity provider and their Atlassian organization.

Unmanaged account

An account not managed by an Atlassian organization. Instead, the user is the owner of their Atlassian account and can update their own details.

Unmanaged user

A user that an admin can't manage from their organization because their account hasn't been claimed by the organization.

Unverified account

An account where the user hasn't verified their email address.


A person who has an account they use to access an Atlassian product. A user has a unique email address to log in to their account.

User access admin

A delegated admin role, assigned at a product (workspace) level. People with this role can manage user and group access to their product, and invite new users to the organization. This role is not billable and doesn't grant the person access to the product they adminnister.

User data

A set number of users who are licensed to use an Atlassian product or services annually.

Rate this page: