We are looking at implementing role-based access controls on some of our SaaS platforms due to entry into emerging markets. Does anyone have best practices to share?

Applications & PlatformsData PrivacyData Protection & Encryption+12 more
2.1k views3 Upvotes4 Comments
Sort By:
Oldest
Chief Technology Officer in Softwarea year ago
RBAC : Go with 

1. Department
2. Role
3. Permissions

Each user will have a role in a department and associated permissions. A user within the department can have multiple roles. Say a finance manager can have EDIT access to finance report but read only access to user data.

Keep in mind that there should be a restriction on admin role and an admin cannot create other admin.

Maintain audit log of each role and edits within roles.
2
COO in Healthcare and Biotecha year ago
Avoid the temptation to build access around individuals. Try to define roles, functions, groups up front so that you can plan appropriate access levels and differences needed.

That said, for an emerging market, plan on being nimble and needing to pivot often. So don’t over invest in this planning and design phase. Build flexibility into the design.
3
CTO in Transportationa year ago
We do have role based access control on our system where we allow our customers to define their own roles and assign to those roles different levels of access to the different areas and features of the application.

Access is granted to the feutres using standard REST (verb + url).

That way our code only needs to check for the permissions that way.

There are some frameworks out there that rely on pre established roles for the code to check for but that’s very limiting and difficult to maintain.
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Senior Enterprise Architect, Application Consulting in Healthcare and Biotecha year ago
Expanding on the prior excellent comments:  Don't overload roles with privileges that a user might need occasionally.  Grant users additional roles with specific privileges when needed, for example during a maintenance window.

Content you might like

Are there ways to leverage Gen AI solution to: a) generate Java code from Oracle PL/SQL and Ab Initio ETL code base b) generate documentation from Oracle PL/SQL and Ab Initio ETL code base? 

Disruptive & Emerging TechnologiesEngineeringStrategy & Architecture+2 more
196 views

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

We are investigating converting from Sailpoint to Saviynt as our service we use to manage the onboarding and off-boarding of employee \ contingent workers.  I am looking to gather feedback for those that are using Saviynt on the Pros and Cons.  How is post-sales support?

Applications & PlatformsVendor/Product Recommendation
349 views

What's a greater concern for returning to the office? Comment how you are prioritizing...

People & LeadershipStrategy & ArchitectureCloud+29 more

Human Factors (fears, mental health, physical spacing)85%

Technical / IT Factors (on-premise tools, pivoting back away from remote)14%

3.7k views3 Upvotes2 Comments