this post was submitted on 14 Aug 2024
20 points (95.5% liked)

Selfhosted

39937 readers
340 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

I am not looking for something like permify, but something like Snipe-IT, but for permissions and roles given to users.

Like an overview of which systems, software etc. a user has access to.

Does something like that exists?

top 5 comments
sorted by: hot top controversial new old
[–] Nomecks@lemmy.ca 9 points 2 months ago (1 children)

It sounds like you're probably looking for some kind of SAML compliant IAM system, where credentials and access can be centrally managed. Active Directory and LDAP are examples of that.

[–] meldrik@lemmy.wtf 5 points 2 months ago (1 children)

I realise my post is not very obvious. I am looking for a tool that lets me create a database of users and which permissions/roles/access they have been granted in various systems.

[–] Nomecks@lemmy.ca 5 points 2 months ago

If you have enough users and systems that this is a problem then you should be centrally managing it. I get that you want to inventory what you have, but I'm saying that you're probably doing it wrong right now, and your ask is solved by using a central IAM system.

[–] just_another_person@lemmy.world 5 points 2 months ago* (last edited 2 months ago)

https://cockpit-project.org/running

This will work well on a single instance if that's what you mean. If you're looking for something that spans multiple, you'd need to have a centralized identity management system of some sort. You could certainly create one on a tiny machine, hook your others up to that, then manage them with Cockpit centrally.

[–] ShunkW@lemmy.world 2 points 2 months ago* (last edited 2 months ago)

I've used SailPoint at two different jobs. It's got its issues. But it's also a really powerful system for enterprise level identity and access management when configured correctly.