Skip to Main Content
Cloud Management and AIOps


This is an IBM Automation portal for Cloud Management, Technology Cost Management, Network Automation and AIOps products. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).

Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas
  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.

Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Status Not under consideration
Workspace Instana
Categories Access Control
Created by Guest
Created on Feb 1, 2023

Ability for RBAC to enable Objects on Team Scope

 

Use-case: To allow more flexible rules for allowing people access to specific entities it would be great to instead of selecting the entities (app perspectives, namespace, etc.) one by one, to allow a query builder approach in which we can use logic and operators in each area therewith unifying the approach.

* Currently I see nothing when activating RBAC, the customer however wants users to see everything EXCEPT what they configure (which is then applicable to the default group for instance)
* Ability for black listing entities in RBAC instead of white listing

In K8s namespaces one would only have the ability to select the applicable namespaces (for instance namespace names, labels, or pods with a label, etc.)
 

Idea priority High
  • Admin
    Máté Návay
    Reply
    |
    Dec 12, 2024

    Parts of this will be delivered as part of the Teams concept presented, but covering both exception listing and all the tagging based access control might be implemented at a later stage of the work. Since the idea description is much more about the exception listing and it is not yet clear if that is feasible to have in the next 6-9 months, the idea will be left in Not considered state.

  • Admin
    Máté Návay
    Reply
    |
    Feb 6, 2023

    Blacklisting (access anything except selected), query based access or tagging based access might be a direction later, but is not within the next 9-12 month timeframe.