Ah, the dilemmas of enterprise authorization! Groups, or roles, for my permissioning, groups or roles, I query? The two need not be conflicting, necessarily.
Roles have the positive externality of existing outside of Active Directory (AD). Because they are external to AD, they can be flexibly employed to allow authorisation of any system.
They can work together by making membership of the role a group! Then update the group to give everyone in the group that role! Amazing!
Roles have the positive externality of existing outside of Active Directory (AD). Because they are external to AD, they can be flexibly employed to allow authorisation of any system.
They can work together by making membership of the role a group! Then update the group to give everyone in the group that role! Amazing!
No comments:
Post a Comment