Comments on: No User Context Decisions in your Enterprise? http://eternallyoptimistic.com/2008/03/27/no-user-context-decisions-in-your-enterprise/ Fri, 29 Jan 2010 22:51:53 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Pamela http://eternallyoptimistic.com/2008/03/27/no-user-context-decisions-in-your-enterprise/comment-page-1/#comment-354 Pamela Tue, 01 Apr 2008 14:43:06 +0000 http://eternaloptimist.wordpress.com/?p=258#comment-354 Theoretically resolved - yes. Resolved in practice - not always. I have been in Enterprises with role-based access control in place who still choose to assign multiple user accounts on the same app to the same user. These fringe cases are the ones I'm referring to. Absolutely, a role is context - I would call roles "system readable" context, to steal a term. Most Identity projects involve turning non-system-readable business processes into system readable rules and policies. Most roles would never need a card, and certainly it would be a user interface nightmare to activate every role, but in the case where adoption of a role represents an event the Enterprise wants to acknowledge, or where the system cannot judge which of two conflicting roles should be adopted, yes I definitely think that cards are useful. thanks for the comments! Theoretically resolved – yes. Resolved in practice – not always. I have been in Enterprises with role-based access control in place who still choose to assign multiple user accounts on the same app to the same user. These fringe cases are the ones I’m referring to.

Absolutely, a role is context – I would call roles “system readable” context, to steal a term. Most Identity projects involve turning non-system-readable business processes into system readable rules and policies. Most roles would never need a card, and certainly it would be a user interface nightmare to activate every role, but in the case where adoption of a role represents an event the Enterprise wants to acknowledge, or where the system cannot judge which of two conflicting roles should be adopted, yes I definitely think that cards are useful.

thanks for the comments!

]]> By: Robin http://eternallyoptimistic.com/2008/03/27/no-user-context-decisions-in-your-enterprise/comment-page-1/#comment-353 Robin Tue, 01 Apr 2008 11:58:23 +0000 http://eternaloptimist.wordpress.com/?p=258#comment-353 Situations #1 and #4 are theoretically resolved using a role based access control approach. This leads me to the following two questions: 1. Does role equal context ? 2. Do (virtual) cards become a convenient means for activating one's role ? Situations #1 and #4 are theoretically resolved using a role based access control approach. This leads me to the following two questions:

1. Does role equal context ?
2. Do (virtual) cards become a convenient means for activating one’s role ?

]]>