Devolutions ForumDevolutions Forum

Use tags to control access to servers

Use tags to control access to servers

0 vote

avatar
sre
Disabled

Hi.

The tagging feature looks cool to seach, but would be even cooler if it could control access also.

An example: All servers tagged "SQL" are only acessible for users with the role "SQL-admin"

This would really help us in daily operations.

Best regards

All Comments (17)

avatar
David Hervieux

Hello,
I will add this to our feature request list.

Regards

David Hervieux

avatar
sre

Hi David.
Tank you for you reply.

How big is the chance this will get implemeted in the feature, and do you have a rough estimate on time? Weeks, months, years?

Best regards,

Simon

avatar
David Hervieux

I would say maybe next year. We try to focus on simplifying RDM and improving the performance. For this specific case the challenge will be how to introduce this feature and making it simple to configure and simple to know what going on when you don't have access to something.

Regards

David Hervieux

avatar
sre

Hi David.
Do you possibly have any update on this issue?
Perhaps this could be optional / Opt-in.

Best regards,

Simon

avatar
David Hervieux

Hello,
This is still on our todo list. We plan to update the security model soon and we will consider this request.

Regards

David Hervieux

avatar
linden

Hi David,

I am also interested in this feature do you have an update ?

Regards,
Karel

avatar
James Lafleur

Hello Karel,

Thank you for showing your interest in this feature.

That being said, it is still on our todo list at the moment. We will update this thread when we will have an update to provide.

Best regards,

James Lafleur

avatar
linden

HI James,

Thanks for your reply, can you give an indication of when this point is planned for development?

Karel

avatar
David Hervieux

Hello,
I'm curious to know if you would accept a soft implementation. I mean that the restriction will only be in RDM for View Password and Connect. We would not add all the different access like Add, Edit and Delete to restrict the access using tags. Is it something interesting or this would be too limited?

Regards

David Hervieux

avatar
linden

Hi David,

So you mean that we can only grand access to View Password and connect trough tags and all other permissions are blocked?
If so this wil be fine for us. We want to grand some departments permissions to only connect to some entry's. for example, when they have the tag "tier3"

Wil you eventually add all the permissions options to tag-based access.

Regards
Karel

avatar
David Hervieux

Hello,
I have updated the ticket for more analysis. This is not a simple task if you want all the different permissions.

Regards

David Hervieux

avatar
linden

Hi David,

For now i would be awesome if we can use it for connect only.

Regards
Karel

avatar
David Hervieux

Even if in the future we are no able to extend it to more permissions?

David Hervieux

avatar
linden

HI David,

Yes even then because mostly we only grand the connect permission because we dont want everyone to create RDP connections.

Regards
Karel

avatar
David Hervieux

Thank you.

David Hervieux

avatar
linden

Hi David,

Any news regarding my request ?

Regards,
Karel

avatar
David Hervieux

Hello,
Nothing yet.

Regards

David Hervieux