RBAC Configuration

AppViewX offers comprehensive support for Role and Resource-Based Access Control (RBAC) and integrates with existing identity stores such as Active Directory (AD) and Lightweight Directory Access Protocol (LDAP) to enforce authorization policies. Roles and Resources can be customized to suit any organizational structure and any user requirements.

Role-based access control (RBAC) is a method of restricting AppViewX functions, network resources that can be managed and monitored in AppViewX based on the roles of individual users within an enterprise. RBAC lets employees have access rights only to the AppViewX functions and network resources they need to do their jobs and prevents them from accessing information that doesn't pertain to them.

The Account module enables you to create and manage resources, roles, user groups, and users which are used to ensure that the system:

  • Verifies the identity of users logging in to the system (Authentication).
  • Controls user access to system resources (Authorization).

Benefits of RBAC

Using RBAC should improve operational efficiency, enhance compliance, provide administrators increased visibility, reduction in costs, decrease in risk of breaches, and data leakage.

Simplified RBAC Configuration in AppViewX

To simplify the existing RBAC Configuration in AppViewX for the Account Administrator, the Quick Config wizard flow option has been introduced in the existing Authentication, User groups, Roles, and Resources. Using the Quick Config option, users should be able to perform all the following actions in the same wizard flow:
  • Configure external authentication or single-sign-on for users to log in to AppViewX.
  • Add users groups into AppViewX by pulling specific user groups from AD into AppViewX based on specific patterns/keywords/codes and support the Bulk Export/Import option to onboard user groups.
  • Pre-packaged roles for ADC, Cert, Security, and Automation modules to assign permissions to user groups.
  • Simplifying custom role creation by providing information help against each ACF explaining the significance of the functionality.
  • Dynamic rule-based resource tagging of newly discovered ADC objects, Certificates based on Query or using a script, and assigning permissions to user groups dynamically.

For details on configuring the role and RBAC refer to the Platform User Guide > Configuring Role and Resource-Based Access Control section.