RDM for Team based on individual login to multiple domains
Hello,
Version: Enterprise 10.6.3
I am looking for some help with setup/best practices for the following requirements. If possible, I would like to setup/manage with Powershell. I will be deploying this to about 100 users.
1. Each users will be logging into RDM with their own account tied to AD.
2. Each users will use their own credentials to connect to Azure VM.
3. Users should not be able to view/edit/delete their account/credentials.
Here's a simple example that I hope can be scale much further.
User Alice (somedomain\alice) log into RDM with her credential and connect to Azure VM with her credential (azure1\alice).
User Alice (somedomain\alice) log into RDM with her credential and connect to Azure VM with her credential (azure2\alice).
User Bob (somedomain\bob) log into RDM with his credential and connect to Azure VM with his credential (azure1\bob).
Thanks!
All Comments (2)
Hello,
The issue is with somedomain\Alice, she has a single account to gain entry to the system, yet she has two accounts for external resources.
This means a folder level override would not be the best option to use.
We would need to see more of the content in order to come up with a proposal.
- How will the tree be structured
- how many servers will be defined
- is that azure credential used for most resources or you have many other shared credentials
The only proposal I could make right now would mean to create a security group for each user, create a credential entry and a server session, both tied to that security group and grant the view permission only to that user.
Maurice
Hello Maurice,
Please see my answer to your questions in bold below. I understand that this type of setup is neither simple or common but it is a business requirements. Let me know if you have any other questions.