Permissions

Hi,

What would be the best approach to handling security, i.e. prevent users from deploying to production?

Having read up on the roles and machine environments, duplicating a team sounds messy, with specific users and machine environments targetting production environment for team leads, and another that targets only development environment.

Am using Octopus Deploy v.3.2.23

Any ideas or what would be the best approach to handling this.

Hi,

Thanks for reaching out. Having multiple teams scoped to different environments is the recommended approach for these situations. Given our experience with our users we found that that model works really well, as it is easily extensible and not to hard too maintain.

What other methods would you recommend? perhaps something you are using on another system? We are always happy to hear thoughts about these kind of things :).

Best regards,
Dalmiro

Hi Dalmiro,

Many thanks for replying back.

Would the principle be the same under Octopus 3.4.x and later, or has the approach changed with newer releases?

Thanks,
Best regards,

Hi,

The principle remains the same since 1.x until the latest 3.4, and we don’t have immediate plans to change it.

Best regards,
Dalmiro

Hi Dalmiro,

Many thanks for the quick responses, much appreciated.

Thanks,
Best regards,
Tom,