I am not looking for something like permify, but something like Snipe-IT, but for permissions and roles given to users.
Like an overview of which systems, software etc. a user has access to.
Does something like that exists?
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.
Rules:
Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.
No spam posting.
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it’s not obvious why your post topic revolves around selfhosting, please include details to make it clear.
Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
No trolling.
Resources:
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
https://cockpit-project.org/running
This will work well on a single instance if that’s what you mean. If you’re looking for something that spans multiple, you’d need to have a centralized identity management system of some sort. You could certainly create one on a tiny machine, hook your others up to that, then manage them with Cockpit centrally.
I’ve used SailPoint at two different jobs. It’s got its issues. But it’s also a really powerful system for enterprise level identity and access management when configured correctly.
It sounds like you’re probably looking for some kind of SAML compliant IAM system, where credentials and access can be centrally managed. Active Directory and LDAP are examples of that.
I realise my post is not very obvious. I am looking for a tool that lets me create a database of users and which permissions/roles/access they have been granted in various systems.
If you have enough users and systems that this is a problem then you should be centrally managing it. I get that you want to inventory what you have, but I’m saying that you’re probably doing it wrong right now, and your ask is solved by using a central IAM system.