Rights Documentation#
Background#
This add-on was created as part of the i-doit add-on competition at the doITbetter Conference 2021. Gerhard Wingender from the City Administration of Neuwied won second place with the add-on "Rights Documentation".
The add-on supports you in managing permissions between departments and IT. Department managers can quickly check what permissions their employees have and adjust them as needed -- without direct access to critical directory services like Active Directory. This increases transparency and improves communication between IT and departments.
When documenting business applications, you can see at a glance:
- Which department is responsible for the application
- Which departments use the application
- How the application is licensed
- What database, version, and update frequency are in use
Features#
After installation, new categories are available to you:
"Application info" category#
In the Application info category for applications, you enter:
- The responsible IT admin
- The responsible and using organizational unit
- The purpose of the application
- Who assigns the permissions and how the assignment is done
"Groups used for permission assignment" category#
In this category, you see which Active Directory groups are used for permission assignment. The assignment is not made here but in the person group objects:
"Permissions documentation" category#
The documentation of permission groups is done via the Permissions documentation category in the person group objects. The applications linked here automatically show the link in their "Groups used for permission assignment" category:
