Role-Based Access Control
How to manage user roles and permissions
The Role-Based Access Control (RBAC) section enables efficient management of user permissions across your organization by assigning users to groups with predefined roles.
RBAC in the CDM-Server
As illustrated, Groups act as an intermediary layer between Roles and Users, streamlining the integration of local or external users from sources like LDAP and Azure.
By using groups, you can efficiently manage access for local and/or external users by assigning roles at the group level, reducing the need for individual permission management and ensuring seamless integration with external authentication systems.
Access Control
No Enforcement of Access Control
While permissions management in RBAC is not available in v1.0.0, the Dashboard allows you to begin setting up your organization’s structure in preparation for the full RBAC release. This enables you to organize users, roles, and groups in advance, so when the complete RBAC package becomes available, minimal additional configuration will be required to fully implement access control across your organization.Users are classified into two categories based on the given rights at the specified level in the organization’s tree:
- Admin Users: These users have admin rights (write permissions) at the root level of the organization’s hierarchy.
- Non-Admin Users: These users lack write permissions on the root level of the organizational tree, restricting some functionalities and access to sections (see Roles page for more information).
CDM-Server Users as part of the RBAC
CDM-Server Groups as part of the RBAC
CDM-Server Roles as part of the RBAC
Last modified December 16, 2024: ca9ced4