We currently use Entra ID groups to define what applications users have access to, and usually try to use their job title (e.g. Project Manager) to create dynamic groups that enable access to enterprise applications.
We want a more granular level of ABAC, without having to change their job title.
I was thinking that, in Assets, we could create the concept of "Role", and then map these to people that have that role (e.g. Agile Project Manager). That "Role" could then be used to populate Entra ID groups with the list of people mapped to it.
Is this a good use of Assets, and a good way to achieve ABAC?
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.