Role-Based Access Control: Flexible Trust with Maestro
Self-service is one of the five keystones for any effective cloud service. This applies not only to the provisioning of services to customers but also to the way the customers organize their internal workflows. An enterprise that does not allow self-service in Cloud for its employees would definitely lose a big part of Cloud benefits, as the operational part will be complicated, slow, and not reactive enough to face the enterprise needs or arising threats properly. However, the question is – when enabling self-service, how to make sure that things don’t go out of control, especially for large teams and infrastructures? Standard Role-Based Access Control (RBAC) Typically, cloud providers allow their customers to set up role-based access to infrastructure management. In this approach, possible operations are combined into roles, typically by purpose. The users, in their turn, are combined into user groups, according to the tasks they perform and the access level they need to have. ...