EXCHANGE RBAC(基于角色的访问控制)管理工具

本文涉及的产品
访问控制,不限时长
简介:

兼容:

server 2012 r2 (需安装.net framework 3.5)

exchange 2013 sp1 cu15


下载地址:

http://rbac.codeplex.com/


说明:

Customizing RBAC roles is in most cases not something that is a frequent task, so it can take a while to familiarize and re-familiarize with the concept and all cmdlets. But if your organization does not fit in the default roles, you will have to dig into it.

However, I came across a tool that would make customizing a lot easier. It’s the RBAC Manager R2 for Exchange. It’s currently posted on Codeplex, including the source code (it’s in C#). It states that it works with Exchange 2010, Exchange 2013 preview and Office 365. The last update was from September 2011, however I’ve found no issues working with Exchange 2013 CU5. Install it on a domain joined computer with .Net 3.5 and just enter a server FQDN and credentials and it works (in my case).

In the overview all Management Roles are presented, including any custom Role groups. Those with a parent are shown in an hierarchy. Selecting a Role Group, shows every Role Assignment, including scopes. Selecting a Management Role shows all inlcuded cmdlet. Tip: Under View>Show Parameter you can enable all parameters that are included in the Management Role. A lot easier than the PowerShell route I’ve previously blogged about here.

RBACManager

Overview of RBAC Manager R2, showing Management Roles, Role Assignments, included cmdlets and their paramters.

Another helpful feature is the ability to search for specific cmdlets, the tool then shows every Role Group with Management Roles that include that specific cmdlet. Very handy if you need to know which Role Groups provides a certain permission. This makes the tool valuable even if you do not require RBAC customization.

You can remove Management Roles from Role Groups, cmdlets from Management Roles but you can also remove specific parameters (after enabling the view of parameters). Create new Management Roles from a parent Role. I could do everything I needed to do without using the Exchange Management Shell. And the best part? It logs the actual Exchange PowerShell commands in a text log file for reference and documentation. Nice!

It’s not a quick tool but this is just a minor irritation. It helps to provide an overview of the RBAC implementation and allows for quick editing and management of Exchange RBAC. For those that do not frequently work with RBAC and know all cmdlets and procedures by heart, this is a great addition in your tool set. I would love to see this kind of functionality added in EAC BTW.





 本文转自 烟台小崔 51CTO博客,原文链接:http://blog.51cto.com/seawind/1897490
相关实践学习
消息队列+Serverless+Tablestore:实现高弹性的电商订单系统
基于消息队列以及函数计算,快速部署一个高弹性的商品订单系统,能够应对抢购场景下的高并发情况。
云安全基础课 - 访问控制概述
课程大纲 课程目标和内容介绍视频时长 访问控制概述视频时长 身份标识和认证技术视频时长 授权机制视频时长 访问控制的常见攻击视频时长
相关文章
|
3月前
|
安全 数据安全/隐私保护 开发者
|
4月前
|
存储 Shell API
Casbin是一个强大的、开源的访问控制库,支持访问控制模型如ACL、RBAC、ABAC等。
Casbin是一个强大的、开源的访问控制库,支持访问控制模型如ACL、RBAC、ABAC等。
|
6月前
|
Kubernetes 数据安全/隐私保护 容器
k8s学习-CKA真题-基于角色的访问控制-RBAC
k8s学习-CKA真题-基于角色的访问控制-RBAC
210 0
|
安全 Java 数据安全/隐私保护
Spring Security-内置访问控制方法介绍和角色权限判断
Spring Security-内置访问控制方法介绍和角色权限判断
Spring Security-内置访问控制方法介绍和角色权限判断
|
数据安全/隐私保护
RBAC基于角色的访问控制权限的基本模型
RBAC基于角色的访问控制权限的基本模型
163 0
RBAC基于角色的访问控制权限的基本模型
|
23天前
|
网络协议 网络虚拟化 数据安全/隐私保护
访问控制列表(ACL)配置
访问控制列表(ACL)配置
访问控制列表(ACL)配置
|
26天前
|
网络协议 安全 网络安全
Cisco-命名ACL访问控制列表
Cisco-命名ACL访问控制列表
|
26天前
|
安全 网络协议 网络安全
Cisco-扩展ACL访问控制列表
Cisco-扩展ACL访问控制列表
|
26天前
|
安全 网络安全 数据安全/隐私保护
Cisco-标准ACL访问控制列表
Cisco-标准ACL访问控制列表
ly~
|
2月前
|
消息中间件 搜索推荐 大数据
一般情况下在 RocketMQ 中添加 access key 的步骤: 一、确定配置文件位置 RocketMQ 的配置文件通常位于安装目录下的 conf 文件夹中。你需要找到 broker.conf 或相关的配置文件。 二、编辑配置文件 打开配置文件,查找与 ACL(访问控制列表)相关的配置部分。 在配置文件中添加以下内容:
大数据广泛应用于商业、金融、医疗和政府等多个领域。在商业上,它支持精准营销、客户细分及流失预测,并优化供应链管理;金融领域则利用大数据进行风险评估、市场预测及欺诈检测;医疗行业通过大数据预测疾病、提供个性化治疗;政府运用大数据进行城市规划和公共安全管理;工业领域则借助大数据进行设备维护、故障预测及质量控制。
ly~
73 2