none
Azure Pack /\ Permissions /\ RBAC-like question RRS feed

  • Question

  • Hello All,

    I know Azure Pack has no RBAC possibilities, also noted that the AP Team announced that this feature will not be built into AP but in Azure Stack instead.

    Are there other ways to achieve that a tenant user can only shutdown the system he/she created but not other VM's in the same hosting plan or setting other rights/limits on specific tenants users when it comes to interaction with the VM's in the private cloud. (so some sort of RBAC)


    Monday, December 7, 2015 2:13 PM

Answers

  • Yes...installed it in a dev environment and tested TAC. Also had contact with their development team.

    TAC has some disadvantages in that team members can sign up to team manager plans enabling themselves to be team managers. Also TAC does not allow the tenant to create users or to bind users to specific vm's in a dynamic way. In TAC you have to create a VM first, then add a role to that VM and set a permission. So there is no predefined role with a set of permissions that can be coupled to a VM or group of VM's. In a way TAC is more build to focus on "internal" tenants only....not in a real host <> tenant/outside world scenario.

    • Marked as answer by D-RMZ Wednesday, December 30, 2015 7:38 AM
    Monday, December 7, 2015 6:56 PM

All replies

  • Hello,

    Did you ty the Team Access Control solution for WAP? http://www.terawe.com/tac4wapack

    Florent

    Monday, December 7, 2015 2:39 PM
  • Yes...installed it in a dev environment and tested TAC. Also had contact with their development team.

    TAC has some disadvantages in that team members can sign up to team manager plans enabling themselves to be team managers. Also TAC does not allow the tenant to create users or to bind users to specific vm's in a dynamic way. In TAC you have to create a VM first, then add a role to that VM and set a permission. So there is no predefined role with a set of permissions that can be coupled to a VM or group of VM's. In a way TAC is more build to focus on "internal" tenants only....not in a real host <> tenant/outside world scenario.

    • Marked as answer by D-RMZ Wednesday, December 30, 2015 7:38 AM
    Monday, December 7, 2015 6:56 PM