Subversion Access Control is a security solution for Apache Subversion that goes well beyond what SVN can provide on its own. To fully understand the benefits of Subversion Access Control, we’ll first look at the fundamental technical differences between Subversion’s built-in security functionality, and WANdisco’s Subversion Access Control product.
In Apache Subversion, user authentication is performed either through a local passwd file or from an LDAP or Active Directory server. Apache also provides an Authorization Layer for defining more granular control of repository objects, but managing text based rules through the Authz file can become difficult as the number of users and repositories inevitably increases.
…..v.s Subversion Access Control
Subversion Access Control is implemented as a proxy from the local Subversion server. It works directly with your LDAP or Active Directory, meaning you can keep your existing setup.
But what can Subversion Access Control offer you? Here are our ten top features of Subversion Access Control:
1) Easy to install, with no retraining required! Subversion Access Control requires no changes to clients or backend servers, meaning that you can continue to use the Subversion technology you’re familiar with.
2) Easy to use, point and click interface.
3) Access control made easy! The ability to implement and maintain complex security policies with minimal effort.
4) Audit capabilities – every repository access attempt down to the file level is reported, showing user ID, Subversion command, date and time, IP address of the client machine used, and whether access was allowed or denied
5) Unlimited access control – Subversion Access Control can support any size of development organization with any number of repositories and access control rules.
6) Delegated admin – this option allows the root administrator to create teams and delegate admin authority to team leaders.
7) Automatic LDAP synchronization – Subversion Access Control automatically picks up LDAP user and group membership changes and assigns new users to the Subversion team that corresponds to their LDAP group.
8) Instant alerts – your security administrators receive immediate alerts for any access violations.
9) Integrated seamlessly with Subversion MultiSite – Subversion Access Control can be implemented standalone, or in combination with Subversion MultiSite for distributed development teams. With Subversion MultiSite, security policy changes made at one location are immediately replicated to every other to enforce consistency across all sites.
10) Available for uberSVN! – uberSVN is the free, open ALM platform for Apache Subversion that has won a string of industry awards and received an overwhelmingly positive response from the Subversion community. For those who want to combine this award winning platform with a fully functional security solution, Access Control is available through the uberAPPS store.
Here’s just some of the benefits of deploying this enterprise-level Access Control functionality with uberSVN:
- Full authorization/authentication
- Define Access Control rules through a simple point-and-click interface
- Delegated admin control
- Define control within each Team/sub-Team to a granular level
- Assign Team Leaders
- Audit capabilities
- Support for ecosystems without internet access
Interested in finding out more about access control options? We’ll be running a free Subversion training webinar on November 15th that covers the pros and cons of the following methods of access control:
- Apache Subversion access control
- Hook scripts
- Subversion Access Control from WANdisco
Visit the ‘Access Control Options with Subversion’ webinar page now to register. Remember that spaces are limited, so register now to avoid missing out.