Enable project level ITAR & EAR permissions
Recommended Practices
Customer self-hosted on their own US-based server (Jama SaaS cannot be used for ITAR/EAR)
Jama root account only for US citizens
Jama Organization Admin user group for US citizens only
Project Management permission for US citizens only
User Groups clearly labeled for ITAR / Non-ITAR
Labeling scheme for Sets that contain ITAR sensitive requirements
By default, images do not have project-level security checks turned on. What this means is that any user who can log into Connect can access any image by its URL, including images that are in projects they don’t have permissions to access. Only org-level permissions are being checked.
Jama Connect® has a feature itar.security.enabled, when enabled, the project-level security for images will be enforced. When the itar.security.enabled feature is activated in Jama Connect, it imposes additional user access and permissions restrictions to align with ITAR compliance requirements.
The itar.security.enabled feature in Jama Connect is a crucial setting designed to ensure compliance with ITAR (International Traffic in Arms Regulations) requirements. This setting facilitates the management of defense-related information and protects sensitive data from unauthorized access.