You are not logged in.
- Topics: Active | Unanswered
Announcement
Download last stable version of GLPI - What can you do for GLPI ? : Contribute
#1 2012-04-19 00:35:41
- tolga
- Member
- Registered: 2012-04-19
- Posts: 2
Tracking people's permissions to assets with the help of glpi
I want to ask a question about a possibility of glpi usage. We figured out it is a great tool and have decided to use glpi for inventory/asset management in our company (demo state for now). But we have another need that we are thinking if glpi can help us for that purpose either. Tracking people's permissions to assets.
We will have all assets in glpi database. Some information will be gathered by ocs-ng or fusion inventory, but some of them will be created manually (secure places etc.). On the other side, we will have a ldap server that we will create hierarchy of people. We will have these 2 database and we need to make a relation between them to track people's permissions to access assets. So wee will need another information like "Permission Types" and a table "Permissions" that we can create relations between them. That means, every record in "Permissions" table points to a relation between Person-Asset-PermissionType and we can track permissions by this way. Table below might explain better with sample data.
People (Ldap) Assets (Glpi) Permission Types (?) Permissions (?)
-------------------------------------------------------------------------------------------------------------
Accounting Department Physical Servers Physical Access Person-Asset-PermType
Accounting Person1 Virt. Server1 Biometric controls
Accounting Person2 Virt. Server2 Keys
IT Department Virtual Servers Remote Access
IT Person 1 Web Server ssh
IT Person 2 Mail server Remote Desktop
Support Company 1 Services / Applications Vpn
SupCompany1 Person1 Web application Application Spesific
SupCompany1 Person2 Mail application Admin user
... Printers Standard user
Printer1 Others (req. explanation)
Printer2 Internet Access
Telephones Standard user
Telephone 1 Others (req. explanation)
Telephone 2 ...
Secure Places
Server room
Office
Others
Internet access
... We need an advise for a reasonable solution. Options are;
We can do this with an add-on in glpi (best way in my opinion). Maybe we can use existing add-ons with some modifications for our purpose.
We have to develop our own software that uses glpi database and ldap.
Any hints/tips/recommendations would be greatly appreciated. Thanks in advance.
Offline
#2 2012-04-19 09:00:55
- tomolimo
- Member
- From: Grenoble, France
- Registered: 2009-05-12
- Posts: 517
Re: Tracking people's permissions to assets with the help of glpi
Hello,
I'm too very interested by this question.
Regards,
Tomolimo
GLPI 9.5.5 - PHP 7.4 / ProcessMaker 3.3.0-community - PHP 7.1 / Windows 2016 / IIS / MySQL 5.7
Worldwide: >17k Computers, >17k Users (16 languages, >11 timezones), >610k tickets, >6700 entities, >7600 Groups, >20700 process cases
Raynet is ARaymond (https://www.araymond.com) IT service management
Offline
#3 2012-04-25 07:21:14
- danilocs
- Member
- From: Brazil - São Paulo
- Registered: 2012-04-08
- Posts: 6
- Website
Re: Tracking people's permissions to assets with the help of glpi
Hi There,
In GLPI is possible to create rules for importation:
Ldap X User X Group X Permission/Profile Y
If User or Ldap X Computer X Entity or Location Y
Now on the permissions you want to run something that GLPI?
Sorry for my english ...
Danilo Santos - dbNetSys IT Consulting
cel.: +55 (11) 7093.6442 or id: 55*82*8011
@Danilo_C_Santos - Linux Counter: #279531
danilo@dbnetsys.com.br - www.dbnetsys.com.br
Offline
#4 2012-04-25 09:44:37
- tolga
- Member
- Registered: 2012-04-19
- Posts: 2
Re: Tracking people's permissions to assets with the help of glpi
Hi danilocs: The purpose is different from glpi's usage in this scenario. I have to create new permission types. I think these names became confusing. We can call it Access Types either. Like "A person can access to an asset with this access type". For an example; "SubCompany User" (person, from ldap) can "ssh" (access type, from where?) to the "Web Application Server" (asset, from glpi). Our company have many employees and assets and thus have lots of access information between them. I need to track these information without papers. I already have an ldap (means user database in this case), and glpi (assets database). I'm asking for advises how to do that, in glpi or out of the glpi but using it's asset database.
Hi tomolimo: It seems there are not so many English forum readers here 
Offline
#5 2012-04-25 09:56:59
- tomolimo
- Member
- From: Grenoble, France
- Registered: 2009-05-12
- Posts: 517
Re: Tracking people's permissions to assets with the help of glpi
The 'rights' plugin could be part of the answer, but is not compliant with latest version of GLPI.
regards,
Tomolimo
GLPI 9.5.5 - PHP 7.4 / ProcessMaker 3.3.0-community - PHP 7.1 / Windows 2016 / IIS / MySQL 5.7
Worldwide: >17k Computers, >17k Users (16 languages, >11 timezones), >610k tickets, >6700 entities, >7600 Groups, >20700 process cases
Raynet is ARaymond (https://www.araymond.com) IT service management
Offline
#6 2022-12-19 17:00:09
- McGyver
- Member
- Registered: 2022-12-19
- Posts: 1
Re: Tracking people's permissions to assets with the help of glpi
Hi,
I'm having the same problem. Did you guys came to a conclusion on how to do it?
I have a list of software where i want to track my users access. Like 'Does this user have the rights and permissions to acces the software or not'?
It doesnt need to be something fancy, just something easy to manage.
Thx in advance
Offline