Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 6 Next »

FlexDeploy provides its own proprietary repository for managing security, including users, groups, and permissions. The implementation provides a fine-grained permission model so that groups can be configured to match the roles and responsibilities of any organization. FlexDeploy also supports LDAP and Active Directory integration for user authentication.

Security Administration

See authentication and authorization summary steps below for quick reference.

Authentication

  • You can configure users in FlexDeploy internal realm or use external LDAP server.
  • See Users to maintain users in FlexDeploy internal realm. If you use this option then you are not relying on external directory servers.
  • You can use Active Directory or other LDAP server for authentication and authorization, see Realms for reference. FlexDeploy user record will still be created when user from external LDAP server logs in for first time. See new user process onĀ Realms page.
  • You can also use both internal as well external realm for users. Users will be first authenticated against external realms and if not successful internal realm will be used.

Authorization

In order to control access to various parts of FlexDeploy, you will be configuring permissions. FlexDeploy supports coarse and finer grained permissions, see below for details.

Permissions are mainly controlled using FlexDeploy Groups even when using external realm. When using external realm, you can map external groups to FlexDeploy groups which allows for less security maintenance when new users start using FlexDeploy.

  • Global permissions allow coarse grained permissions setup. See Global permissions for FlexDeploy group.
  • Deployment permissions. See Deployment permissions for FlexDeploy group.
    1. Control access to various menu items in FlexDeploy. For example, use Read and Create / Update permission for Workflow to allow specific actions to FlexDeploy Group.
    2. Control environments available on deployment request form, reference Creating/Editing a Group
  • Finer grained permissions
    1. Project - control access to specific projects for FlexDeploy groups. This allows you to control finer grained access (create, configure, execute etc.) at project of folder level. See Project Security.
    2. Release
    3. Pipeline
  • No labels