Apono Secures $15.5M Series A Funding to Revolutionize Cloud Access Security

Read More

Get inspired

Browse dozens of permission workflows by industry leaders

Category

All

Resource

All

Temporary R&D access to Production

  • Production
  • JIT
  • Self-serve
Turn around
When
R&D group
requests
READ
to
Production_DB
from
CloudSQL
grant access for
3 hours
with
Manager
approval
RDS

Dev on-call shift baseline access

  • On-call
  • Automatic
Turn around
While
DevOnCall
is on shift
provide
READ
to
EC2 logs
from
AWS_Prod
grant access for
5 hours
with
automatic
approval

Preventing Human Errors in MySQL Production

  • Production
  • JIT
  • Self-serve
Turn around
When
DevOnCall
requests
READ/WRITE
to
any resource
from
MySQL
then grant access for
1 hour
with
DevOps
approval
RDS

Customer success – Restricted access to customer data

  • Compliance
  • JIT
  • Self-serve
  • Data
Turn around
When
user in CS group
requests
VIEW
to
any database tagged customer
from
AWS RDS Prod
grant access for
1 hour
with
manager
approval

On-Call Production Break-Glass Access

  • Break-glass
  • JIT
  • Self-serve
Turn around
When
DevOnCall
Requests
View
to
NameSpace_Prod
From
Cluster_prod
Grant for
4 Hour
With
Cloud Admin
approval

Just-in-Time Access to MySQL

  • JIT
  • Self-serve
Turn around
When
Developer
requests
READ_WRITE
to
any table
from
MySQL replica
grant access for
4 hours
with
automatic
approval

Compliant Customer Database Access

  • Compliance
  • Data
Turn around
When
Developer
requests
READ
to
customer_database
from
MySQL
grant access for
1 hour
with
CISO
approval

Developer temporary readonly access to production

  • Production
Turn around
When
Developer
requests
READ_WRITE
to
any DB
from
Google Cloud SQL-Dev
then grant access for
4 hours
with
gcp-monitoring-admins
approval

CloudSQL Just-in-time Access

  • JIT
Turn around
When
Developer
requests
READ_WRITE
to
postgres
from
Google Cloud SQL
then grant access for
4 hours
with
gcp-monitoring-admins
approval

Support Access to Customer Data

  • Compliance
  • Data
Turn around
When
Customer Support
requests
READ_ONLY
to
table tagged customer
from
MongoDB
grant access for
2 hours
with
manager
approval

On-call production break-glass access

  • Break-glass
  • JIT
  • Self-serve
Turn around
When
DevOnCall
requests access to
restart any Kubernetes pod
from
production
grant access for
1 hour
with
automatic
approval

R&D baseline access

  • Automatic
  • Staging
  • Dev
Turn around
When
R&D group is on call
provide access to all
Kubernetes Dev Kubernetes namespaces
with
automatic
approval

BI – Restricted access to PII

  • Compliance
  • JIT
  • Self-serve
  • Data
Turn around
When
BI Group
requests
VIEW
to
any db tagged PII
from
MongoDB_Prod
grant access for
5 hours
with
CISO
and someone from
BI Management Group
approval

CS – Restricted access to PHI

  • Compliance
  • JIT
  • Self-serve
  • Data
Turn around
When
CS Group
requests
VIEW
to
any table tagged PHI
from
PostgreSQL_Prod
grant access for
2 hours
with
customer
approval

BI – Restricted access to financial data

  • Compliance
  • JIT
  • Self-serve
  • Data
Turn around
When
BI Group
requests
VIEW
to
any collection tagged SOX
from
MongoAtlas
grant access for
3 hours
with
CFO
approval

Developers – SSH production access

  • Production
  • JIT
  • Self-serve
Turn around
When
user
in
Developers Group
requests access to
any Prod SSH Server
grant access for
3 hours
with
SRE team
approval

Developers – RDP access

  • Self-serve
Turn around
When
user in the
Developers Group
requests
access to connect to any
RDP server
grant access for
9 hours
with
automatic
approval