How best to implement RBAC in SMA?

Tom_HendricksTom_Hendricks Customer Super IT Monkey ✭✭✭✭✭
Orchestrator finally started to get RBAC (Role-Based Access Control) right, but SMA was left out of that improvement, and SMA needed it more than Orchestrator did.  SMA basically has two "roles": Full Control, or No Access.

What if I am storing credentials for use in scripts, but I do not want everyone with rights to SMA to be able to export the password into clear text?

What if I want to allow certain teams to edit and maintain certain runbooks, but not others?

The official Microsoft position is "use Azure" or "wait for Azure Stack."  Is there a third option that one of you have implemented or have a good thought on how to construct?

Comments

Sign In or Register to comment.