Impressive solution. I see great potential. In a startup of 30 people that needs SOC2 compliance - me as DevOps / security team - I have a problem with access requests from engineering / marketing / sales etc.
On the one hand, I want to do them as quickly as possible, because I know how frustrating the lack of access is. On the other hand, our current flow for reporting change history / review / onboarding / offboarding for compliance with e.g. SOC2 is time-consuming and prone to oversight.
I see a lot of potential here, because I was thinking of launching an access management project myself. Most access management systems are focused around SSO, and this - due to the SSO tax - is not for every application in a small organization. Open-source can allow the community to create integrations to manage access for less popular products without this tax.
I notice that the project is used to manage JIT access. I wonder what would be operational issues with this tool if this access was given for weeks / months instead of hours?
I see your solution as pretty similar to Granted Approvals which are also open-source. What motivated you to start something of your own? I think Netflix open-sourced one solution for AWS too.
From another hand, GitHub Entitlements as the democratization of access management via IaaC, it is also an interesting direction. Various projects independently implement similar ideas it looks.
I like depth integration with Slack. I've been looking at AccessOwl for some time, which is well integrated with Slack too.
> I was thinking of launching an access management project myself. Most access management systems are focused around SSO, and this - due to the SSO tax - is not for every application in a small organization.
Great point. SSO integrations also don’t necessarily provide the level of control you need to grant people appropriate permissions. Like you can add/remove people from the application but not give them appropriate access within it. Would love to learn how you’re thinking about the problem, send us a note if you want to talk more!
> I wonder what would be operational issues with this tool if this access was given for weeks / months instead of hours?
You can configure access duration flexibly with Sym. That being said, part of our philosophy is to make it easy for teams to transition to shorter access durations because the friction to re-grant access is reduced.
> I see your solution as pretty similar to Granted Approvals which are also open-source. What motivated you to start something of your own? I think Netflix open-sourced one solution for AWS too.
There are some great tools in the space for sure. Our motivation is to build a flexible engine for access and approvals that you can layer in to any modern platform stack.
On the one hand, I want to do them as quickly as possible, because I know how frustrating the lack of access is. On the other hand, our current flow for reporting change history / review / onboarding / offboarding for compliance with e.g. SOC2 is time-consuming and prone to oversight.
I see a lot of potential here, because I was thinking of launching an access management project myself. Most access management systems are focused around SSO, and this - due to the SSO tax - is not for every application in a small organization. Open-source can allow the community to create integrations to manage access for less popular products without this tax.
I notice that the project is used to manage JIT access. I wonder what would be operational issues with this tool if this access was given for weeks / months instead of hours?
I see your solution as pretty similar to Granted Approvals which are also open-source. What motivated you to start something of your own? I think Netflix open-sourced one solution for AWS too.
From another hand, GitHub Entitlements as the democratization of access management via IaaC, it is also an interesting direction. Various projects independently implement similar ideas it looks.
I like depth integration with Slack. I've been looking at AccessOwl for some time, which is well integrated with Slack too.