![]() ![]() The key to success here is that tenfold acts as a central permission management platform, applying role-based access control to every system. Applications that are supported through out-of-the-box plugins include SAP ERP, Groupwise, HCL Notes, as well as ticket and help desk systems such as Jira and TOPdesk. Not only does it manage your file server and AD permissions – it also allows you to grant permissions across a variety of other systems thanks to its rich third-party support. Tenfold’s feature palette doesn’t end here though. It’s almost impossible to get your admins on the same page when it comes to things like naming conventions for groups if they are scattered all over the place, possibly not even in the same building. It’s a) really time-consuming, and b) leads to a lot of mistakes.Īnd, obviously, the risk of errors increases exponentially the more admins you have and the more branches and locations they have to manage. In smaller companies with fewer users this is probably doable – if your admin is really committed and meticulous in their approach.īut what about larger companies with hundreds or even thousands of users? How are you going to go about creating and managing all the permission groups needed to follow AGDLP? It’s a daunting task, as you can probably imagine. They have to ensure it is applied properly and consistently at all times. The problems begin when admins attempt to implement the AGDLP principle manually. However, in practice it’s an entirely different story. So, in theory, the AGDLP principle is a great approach for Active Directory permission management. The Problem with AGDLP: It’s Time-Consuming and Error-Prone ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |