Cloud Services

DevOps Intelligence

User and role management
Published On Dec 19, 2024 - 9:59 AM

User and role management

Learn how to grant appropriate access to your users based on their role within the DevOps lifecycle.
DevOps Intelligence employs a Role-Based Access Controls (RBAC) for enabling appropriate access for individuals assigned those roles. Each role grants privileges to individuals, such as view and edit, for specific elements of each service, enabling administrators to tailor access to team members in accordance with organizational needs and policies. Subsequent sections describe the supported DevOps Intelligence roles and lists the privileges granted for each role. For steps on how to assign roles to users, refer to Onboard users.

Supported role-based functions

DevOps Intelligence supports four role-based functions that DevOps teams typically use to observe the performance of each phase of the DevOps life cycle and make necessary adjustments in your governed resources:
  • Development Manager:
    • Requires a unified view of DevOps Intelligence pipeline, tools, containers, and application development and deployment status.
    • Checks cluster health of the application spread across multiple data centers and multiple clouds.
  • Development Engineer:
    • Performs enterprise-level view to measure the SDLC maturity level.
    • Requires summary view of a service's core metrics spread across multiple clouds.
    • Maintains a macro view of DevOps Intelligence pipelines, tools, containers, and application development and deployment status.
    • Leads the development of pilots to test business hypotheses.
    • Advises on cost optimization opportunities by analyzing usage and utilization costs as well as asset performance.
    • Communicates frequently with stakeholders on project status.
    • Enables application developers to move at speed while optimizing cost, security, and performance positions.
    • Acts as a systems integrator when the application he is managing is a large application or is developed in waterfall method.
  • Site Reliability Engineer:
    • Support DevOps teams in template development and use.
    • Integrate IaaS and PaaS into DevOps pipelines.
    • Perform a large amount of Automation.
    • Assist with the design and testing of end-to-end resilience.
    • Design of PaaS/IaaS service templates.
  • Security and Compliance Officer:
    • Manage risk and compliance, and secure and protect the business's assets (employees, data, information, office locations).
    • Direct staff to assess, monitor, and develop strategies to proactively guard against information and information technology (IT) risks.
    • Respond to incidents; establish appropriate standards and controls; manage security technologies; and direct the establishment and implementation of policies and procedures.
    • Work to understand and measure the potential implications of a security breach.
    • Align audit and information-related compliance.
    • Identify, assess and prioritize enterprise-wide risks that have the potential to inflict harm on the organization (uncertainty in financial markets, project failures, legal liabilities, credit, risks, accidents, and natural disasters).

Supported roles

To support individuals operating in the functions described in the previous section, DevOps Intelligence has five defined roles that provide specified privileges for assigned users, enabling access to functional elements of the service and authorization to perform necessary functions to operate in that role. The following table describes these roles and the granted privileges for each.
Role
Privileges
DevOps function
Organization Admin
The Organization Admin role provides the following privileges:
Senior App Developer
• Set Roles for users in the organization
• Access Metering Data
• Setup of CICD tools chain for the organization (Credentials)
• View Sync status of CICD tools chain, and Mapped Technical services and associations
• Manage of CICD tools chain (Credentials of discovery/sync), and applications
• Map/Associate technical services and applications
• Create an application
• View applications and applications dashboards
• Setup and Manage Visibility Policies (by user, by application)
Organization Editor
The Organization Editor role provides the following privileges:
DevOps Engineer
• Set roles for users in the organization
• Access Metering Data
• Setup of CICD tools chain for the organization (Credentials)
• View Sync status of CICD tools chain, and Mapped Technical services and associations
• Manage of CICD tools chain (Credentials of discovery/sync), and applications
• Map/Associate technical services
• View applications and applications dashboards
• Manage Visibility Policies (by user, by application)
Organization Viewer
The Organization Viewer can view all of the following:
IT Architecture, TBC
• Sync status of CICD tools chain
• Mapped Technical services and associations
• View Applications
• View application dashboards
DevOps Intelligence Assessment Editor
• View performance metrics
Consultant
• View settings page
DevOps Intelligence Release Manager
• Edit application release decision parameters
Development Manager
The Organization Viewer role is a Read-Only role. This is the base role in the organization.
Do you have two minutes for a quick survey?
Take Survey