Implementing Organizational Segmentation - Tech Talks #106
Module Deep Dive
In this installment of Tanium Tech Talks, host Ashley McGlone welcomes Director of Technical Account Management Andrew Meyer. Andrew is an expert on implementing role-based access control (RBAC) at scale within organizations. In this video, they discuss the complexities and best practices for implementing RBAC in the Tanium console.
Introducing role-based access control (RBAC)
The episode builds on previous discussions about RBAC, focusing on real-life implementation for organizations requiring separated duties and permissions within Tanium’s single console.
- Challenges and solutions: Andrew highlights the challenges of implementing RBAC in complex environments and emphasizes the importance of planning, global governance, and having a center of excellence.
- Key success factors: Successful RBAC implementation requires alignment between user provisioning and device segmentation, often using LDAP sync and custom tags for effective management.
- Planning and building RBAC structures: Andrew outlines steps for planning and building RBAC structures, including creating custom tags, computer groups, roles, and personas.
- Automation and documentation: Automation using Tanium REST APIs is recommended for creating and updating RBAC templates, and thorough documentation is essential for maintaining these structures.
- Console demonstration: Andrew demonstrates how to navigate the Tanium console to manage RBAC, showing the creation of personas and the assignment of permissions.
More resources
Tanium Subscription Center
Get Tanium digests straight to your inbox, including the latest thought leadership, industry news and best practices for IT security and operations.
SUBSCRIBE NOW
