LeanIX GmbH, profile picture
Uploaded byLeanIX GmbH
PDF, PPTX2,089 views

LeanIX Virtual Workspaces

The document discusses LeanIX's virtual workspaces, highlighting their ability to reduce complexity by allowing users to focus on essential information. It provides an overview of key features like role-based access control, data segregation, and customizable permissions, aimed at improving collaboration and decision-making within enterprises. A live demo is promised to illustrate the practical application of these concepts.

Embed presentation

Download as PDF, PPTX
Webinar How to reduce complexity by segregating your data with Virtual Workspaces Felix Hoffmann, Product Management 2019-09-24
2 Felix Hoffmann Product Manager @ LeanIX GmBH @Sisp3ks Felix Hoffmann felix.hoffmann@leanix.net Mathematician by trade Strong interest into Data Science (NLP, ML, …) Responsible for Core Product at LeanIX Ask me about: Ballroom Dancing and Table Tennis
3 Agenda ... • How it works Virtual Workspaces • Live Demo LeanIX Introduction Q&A • Overview
LeanIX Introduction
5 We are a trusted partner to make your EA program successful 5 • Founded in 2012, backed by leading investors • 200+ customers in > 50 countries • 150+ employees in 2 offices: Bonn & Boston • Winner Deloitte Fast 50 & Best Place to Work
6 > 150 employees driving innovation in EA 159 Team Members 33 Average Age 24 Nationalities 2 Offices 1 Team
7 LeanIX enables intuitive analysis in business context and facilitates faster decision taking Large Enterprises High-growth tech
8 We are a thought-leader in modern IT Architectures Interactive, fast visualization and strong reporting capabilities Fully flexible data model in cost-efficient, multi-tenant approach Developer-friendly GraphQL API to build extensions Integration with Enterprise Eco-system – ServiceNow, Signavio State-of-the art Microservices architecture & Docker deployment Pathfinder Technology
9 Thought leaders have moved to LeanIX Industrials & Manufacturing Financial & Insurance Consumer Energy & Materials Healthcare Tech, Media & Telecoms Logistics Travel Full list of official reference customers behind this link: https://www.leanix.net/en/ecosystem/customers
10 Agenda ... • How it works Virtual Workspaces • Live Demo LeanIX Introduction Q&A • Overview
Virtual Workspaces
Motivation: Restrict Users‘ View to Essential Information Average size of workspaces1 increases • 6700 Fact Sheets (max 70 k) • 23 k Relations (max 215 k) Necessity to keep Overview • Instant access to relevant information • Streamline information • Interactive collaboration (1) Among customers in ultimate edition, as of May 2019
13 When you think of Virtual Workspaces ... "As a user it should feel like there is nothing else in the [EA] world." - Senior Manager of EAM in Pharmaceuticals
14 Key Concepts ACE Virtual Workspaces RBAC ACL • Access Control Entity • ID (internal) • Name • Display name • Description • Access Control List • List of ACEs, e.g. on a Fact Sheet • Name of the Feature • Each VW is defined by an ACE • A virtual workspace establishes a boundary within a (physical workspace) • Role-based access control • Works on a per Fact Sheet type basis
Role-based permission model (1/2) – Separate Admin, Member and Viewer by default 15 Name & Description Projects Business Support Data Management Sourcing Administration Name & Description Projects Business Support Data Management Sourcing Administration Name & Description Projects Business Support Data Management Sourcing Administration 1 Admin 2 Member 3 Viewer • Default Roles can be managed inside the customer’s IdP or in LeanIX • Custom Roles can be added, then roles need to be managed inside the customer’s IdP* • Different Permissions can be maintained per Fact Sheet Type* • Write and read access can be controlled on attribute level * * Requires Add-On “Configuration Full” Read & Write Access Read Access No Access
Role-based permission model (2/2) – Bring in new roles and/or permissions 16 Name & Description GDPR Projects Business Support Data Management Administration Name & Description GDPR Projects Business Support Data Management Administration Name & Description GDPR Projects Business Support Data Management Administration 1 Admin 2 Member 3 Viewer Sourcing Sourcing Sourcing Name & Description GDPR Projects Business Support Data Management Administration 4 Sourcing • Default Roles can be managed inside the customer’s IdP or in LeanIX • Custom Roles can be added, then roles need to be managed inside the customer’s IdP* • Different Permissions can be maintained per Fact Sheet Type* • Write and read access can be controlled on attribute level * * Requires Add-On “Configuration Full” Read & Write Access Read Access No Access Data Privacy Officer
17 Virtual Workspaces allow full separation in a workspace A One Workspace Multiple Physical WorkspacesVirtual WorkspacesB C Region EU Workspace Region EU Brand 1 Brand 2 Bus Cap A Bus Cap A Brand n Bus Cap A Group View Bus Cap A App 1 App 2 App 3 Bus Cap A App 1 App 2 App 3 User Group A User Group B User Group C Region EU Other Workspaces Workspace Bus Cap A App 1 App 2 App 3 User Group A User Group B User Group C Other Workspaces Brand 1 Brand 2 Brand 3 Brand 1 Brand 2 Brand 3 • Transparency across brands • Common Business Capabilities • Group-view built-in • One configuration for all • Logical Separation of brands • Common Business Capabilities • Group-view built-in • One configuration for all • Strong Separation of brands • Separate Business Capabilities • Specific configurations per brand • Custom implementation to generate Group View (via API)
18 Role-based permission model vs. Virtual Workspaces Virtual Workspaces Set Read / Write permissions on a single Fact Sheet Role-based permission model Set Permissions for some operation among all FS of a type
Use Cases
20 A flexible concept using Access Control Entities (ACE) and Access Control Lists (ACL) ACE ACE ACE ACE Brand 1 Brand 2 Brand 3 Group View Board Manag- ment Teams Global EA BPM IT OPS Brands Information Access Views on data EMEA APAC AMER OTHER Regions
21 Divide LeanIX Workspace by Geographic Distribution / Brands / Subsidiaries … Structure your Workspace by company structures Specific configurations/brand Strong Separation of brands User Group Application
22 Protect only some assets for a very sensitive part of company SensitiveSensitive Confidentiality Secure data segregation
23 Divide LeanIX Workspace by Department / Business Capability Built-in Group-view One configuration for all Logical Separation by Business Capabilities Data Objects Business Capabilities User Groups Applications IT Components Technical Stacks Providers
24 Write-Protection: Teams All users can see everything, but I can only edit the Fact Sheets of ‘my team‘. ACE ACE ACE ACE
How it works
26 A user gets Access Control Entities via SSO User‘s Workspace Permission can have.. Fact Sheet can have … ACL has.. has common entities? ACE = Access Control Entity ACL = Access Control List Active Directory SSO ACE ACE ACE ACE ACE ACE ACE ACE
27 Read Access is included into Write Access Global Read Write Whitelist approach Users will automatically assign “correct” permission Admins can configure more sophisticated scenarios Define on a per Fact Sheet type basis Fact Sheets that I have access to
28 Determining Read and Write Access [ ] [ ] [ Marketing ] [ ] [ Marketing ] [ Marketing ] Read Access Write Access Result Everyone can read and write Everyone can read, only Marketing write Only Marketing can read or write [ Marketing, HR ] [ Marketing ] Only Marketing can read and write, HR can only read
Set-up and Demo
30 Demo Marketing Finance HR
31 Summary: LeanIX Virtual Workspaces Granular Data Segregation Scalable Customizable Secure Enterprise-Ready Professional & Ultimate Editions Paid Add-On Available Now • Control access to individual Fact Sheets • Minimal administrative work by populating access controls via SSO
LeanIX Virtual Workspaces

More Related Content

PDF
EDGY introduction webinar
byIntersection Group
 
PPTX
Implementing Effective Enterprise Architecture
byLeo Shuster
 
PDF
Introduction to Enterprise Architecture and TOGAF 9.1
byiasaglobal
 
PPTX
TOGAF Certification
byMiguel Vilaca
 
PDF
Structured Approach to Solution Architecture
byAlan McSweeney
 
PDF
ArchiMate® 3.0 - Trick or Treat?
byThe Open Group SA
 
PDF
BUSINESS ARCHITECTURE OVERVIEW
byKenMartin18
 
PPT
Stepping-stones of enterprise-architecture: Process and practice in the real...
byTetradian Consulting
 
EDGY introduction webinar
byIntersection Group
 
Implementing Effective Enterprise Architecture
byLeo Shuster
 
Introduction to Enterprise Architecture and TOGAF 9.1
byiasaglobal
 
TOGAF Certification
byMiguel Vilaca
 
Structured Approach to Solution Architecture
byAlan McSweeney
 
ArchiMate® 3.0 - Trick or Treat?
byThe Open Group SA
 
BUSINESS ARCHITECTURE OVERVIEW
byKenMartin18
 
Stepping-stones of enterprise-architecture: Process and practice in the real...
byTetradian Consulting
 

What's hot

PDF
Enterprise Architecture - TOGAF Overview
byMohamed Sami El-Tahawy
 
PPSX
A Brief Introduction to Enterprise Architecture
byDaljit Banger
 
PDF
TOGAF 9.2 - Transforming Business
byReal IRM
 
PDF
Archimate Meta Model
byMaganathin Veeraragaloo
 
PDF
Enterprise Security Architecture
byKris Kimmerle
 
PPTX
Intro to Enterprise Architecture (EA)
byFahmi Abdul Latip
 
PPTX
Enterprise Architecture for Dummies
bySebastien Juras
 
PPTX
Sustainability in Project Management
byasapm
 
PDF
SABSA: Key features, advantages & benefits summary
bySABSAcourses
 
PDF
Business Value Measurements and the Solution Design Framework
byLeo Barella
 
PPTX
Introduction to Enterprise Architecture
byMohammed Omar
 
PPT
Ea Presentation Final
bylerchsc
 
PPTX
EA maturity models
byPaul Sullivan
 
PPTX
A Summary of TOGAF's Architecture Capability Framework
byPaul Sullivan
 
PDF
Software Maintenance and Evolution
bykim.mens
 
PPTX
Enterprise architecture
bySamah SAFI, MBA
 
PPTX
Application Rationalization with LeanIX
byLeanIX GmbH
 
PDF
From Business model to Capability Map
byCOMPETENSIS
 
PDF
IT Operating Model - Fundamental
byEryk Budi Pratama
 
PPTX
TOGAF
byAhmed Gamil
 
Enterprise Architecture - TOGAF Overview
byMohamed Sami El-Tahawy
 
A Brief Introduction to Enterprise Architecture
byDaljit Banger
 
TOGAF 9.2 - Transforming Business
byReal IRM
 
Archimate Meta Model
byMaganathin Veeraragaloo
 
Enterprise Security Architecture
byKris Kimmerle
 
Intro to Enterprise Architecture (EA)
byFahmi Abdul Latip
 
Enterprise Architecture for Dummies
bySebastien Juras
 
Sustainability in Project Management
byasapm
 
SABSA: Key features, advantages & benefits summary
bySABSAcourses
 
Business Value Measurements and the Solution Design Framework
byLeo Barella
 
Introduction to Enterprise Architecture
byMohammed Omar
 
Ea Presentation Final
bylerchsc
 
EA maturity models
byPaul Sullivan
 
A Summary of TOGAF's Architecture Capability Framework
byPaul Sullivan
 
Software Maintenance and Evolution
bykim.mens
 
Enterprise architecture
bySamah SAFI, MBA
 
Application Rationalization with LeanIX
byLeanIX GmbH
 
From Business model to Capability Map
byCOMPETENSIS
 
IT Operating Model - Fundamental
byEryk Budi Pratama
 
TOGAF
byAhmed Gamil
 

Similar to LeanIX Virtual Workspaces

PDF
How to reduce complexity by segregating your data with Virtual Workspaces
byLeanIX GmbH
 
PPTX
How to leverage Enterprise Architecture in a regulated environment
byLeanIX GmbH
 
PPT
SwiftALM is an integrated, collaborative, web-based platform for managing and...
bySyed726752
 
PDF
Microsoft Dynamics CRM Certification Training
byDavid Blumentals
 
PPT
Federal IT Initiatives - BDPA Conference Executive Panel
byBDPA Education and Technology Foundation
 
PPT
2004 10 21 Rbac At Mazda Horst Walther
byCardinaleWay Mazda
 
PPT
ISC APPS FORMS BY SWAROOP
byAnil Kumar
 
PPT
Scalable web-based workflow platform
byAshutosh Bijoor
 
PPTX
EMC Documenutm xCP 2.2 vs 1.x
byHaytham Ghandour
 
PDF
2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm
byIBM Sverige
 
PDF
Overview of Identity and Access Management Product Line
byNovell
 
PDF
Salesforce Wellington community meeting October 2024
byAnna Loughnan Colquhoun
 
PDF
General Data Protection Regulation, a developer's story
byMichelangelo van Dam
 
PPTX
AccessControlMgmt_EKT_1709_FPS01_version1pptx
byDevendraPhate1
 
PDF
Big Data Evolution
byitnewsafrica
 
PPTX
Ensure GDPR Compliance with LeanIX
byLeanIX GmbH
 
PDF
How to Scale Information Dissemination to the Virtual Digital Workspace
byXeniT Solutions nv
 
PDF
Oracle forms personalization
byKaushik Kumar Kuberanathan
 
PPTX
Next_Gen_Overview
byShivanshu Upadhyay
 
PDF
Implementing and Auditing GDPR Series (8 of 10)
byJim Kaplan CIA CFE
 
How to reduce complexity by segregating your data with Virtual Workspaces
byLeanIX GmbH
 
How to leverage Enterprise Architecture in a regulated environment
byLeanIX GmbH
 
SwiftALM is an integrated, collaborative, web-based platform for managing and...
bySyed726752
 
Microsoft Dynamics CRM Certification Training
byDavid Blumentals
 
Federal IT Initiatives - BDPA Conference Executive Panel
byBDPA Education and Technology Foundation
 
2004 10 21 Rbac At Mazda Horst Walther
byCardinaleWay Mazda
 
ISC APPS FORMS BY SWAROOP
byAnil Kumar
 
Scalable web-based workflow platform
byAshutosh Bijoor
 
EMC Documenutm xCP 2.2 vs 1.x
byHaytham Ghandour
 
2 -2-6 kista watson summit-gdpr how ibm preparing hogg-sm
byIBM Sverige
 
Overview of Identity and Access Management Product Line
byNovell
 
Salesforce Wellington community meeting October 2024
byAnna Loughnan Colquhoun
 
General Data Protection Regulation, a developer's story
byMichelangelo van Dam
 
AccessControlMgmt_EKT_1709_FPS01_version1pptx
byDevendraPhate1
 
Big Data Evolution
byitnewsafrica
 
Ensure GDPR Compliance with LeanIX
byLeanIX GmbH
 
How to Scale Information Dissemination to the Virtual Digital Workspace
byXeniT Solutions nv
 
Oracle forms personalization
byKaushik Kumar Kuberanathan
 
Next_Gen_Overview
byShivanshu Upadhyay
 
Implementing and Auditing GDPR Series (8 of 10)
byJim Kaplan CIA CFE
 

More from LeanIX GmbH

PDF
Gartner EA: The Rise of Data-driven Architectures
byLeanIX GmbH
 
PDF
Application Harmonisation using Design Principles in LeanIX
byLeanIX GmbH
 
PPT
Effective EAM: whet your appetite & deliver solutions
byLeanIX GmbH
 
PPTX
Lean EAM with the Microservices Add-on and the Signavio Integration
byLeanIX GmbH
 
PPTX
Next Level Enterprise Architecture
byLeanIX GmbH
 
PDF
Integration Architecture with the Data Flow
byLeanIX GmbH
 
PPTX
LeanIX-ServiceNow Integration
byLeanIX GmbH
 
PDF
Custom Reports & Integrations with GraphQL
byLeanIX GmbH
 
PPTX
LeanIX Inventory: Import & Export
byLeanIX GmbH
 
PDF
Survey Add-on Showcase: Cloud Transformation
byLeanIX GmbH
 
PDF
The LeanIX Microservices Integration
byLeanIX GmbH
 
PPTX
LeanIX-Signavio Integration
byLeanIX GmbH
 
PPTX
How to set up a Lean Standards Governance
byLeanIX GmbH
 
PPTX
Innovative API-Based LeanIX Enhancements
byLeanIX GmbH
 
PDF
Moving EA - from where we are to where we should be
byLeanIX GmbH
 
PDF
Is next generation EAM more than just agile IT planning?
byLeanIX GmbH
 
PPTX
Beyond CIO - Will there still be Architecture Management in 2025
byLeanIX GmbH
 
PDF
The Day After Tomorrow
byLeanIX GmbH
 
PPTX
The state of SAP S/4HANA Transformation seen from an Enterprise Architecture ...
byLeanIX GmbH
 
PPTX
Lessons learned: A step-wise implementation for Application Rationalization
byLeanIX GmbH
 
Gartner EA: The Rise of Data-driven Architectures
byLeanIX GmbH
 
Application Harmonisation using Design Principles in LeanIX
byLeanIX GmbH
 
Effective EAM: whet your appetite & deliver solutions
byLeanIX GmbH
 
Lean EAM with the Microservices Add-on and the Signavio Integration
byLeanIX GmbH
 
Next Level Enterprise Architecture
byLeanIX GmbH
 
Integration Architecture with the Data Flow
byLeanIX GmbH
 
LeanIX-ServiceNow Integration
byLeanIX GmbH
 
Custom Reports & Integrations with GraphQL
byLeanIX GmbH
 
LeanIX Inventory: Import & Export
byLeanIX GmbH
 
Survey Add-on Showcase: Cloud Transformation
byLeanIX GmbH
 
The LeanIX Microservices Integration
byLeanIX GmbH
 
LeanIX-Signavio Integration
byLeanIX GmbH
 
How to set up a Lean Standards Governance
byLeanIX GmbH
 
Innovative API-Based LeanIX Enhancements
byLeanIX GmbH
 
Moving EA - from where we are to where we should be
byLeanIX GmbH
 
Is next generation EAM more than just agile IT planning?
byLeanIX GmbH
 
Beyond CIO - Will there still be Architecture Management in 2025
byLeanIX GmbH
 
The Day After Tomorrow
byLeanIX GmbH
 
The state of SAP S/4HANA Transformation seen from an Enterprise Architecture ...
byLeanIX GmbH
 
Lessons learned: A step-wise implementation for Application Rationalization
byLeanIX GmbH
 

Recently uploaded

PPTX
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
PPTX
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
PDF
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
PDF
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
PPTX
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
PPTX
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
PPTX
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
PDF
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
PDF
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
PDF
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
PDF
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
PDF
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
PDF
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
PDF
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
PPTX
Workflow and decision Automation with Flowable
bychakib ch
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PPTX
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
PPTX
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 
apidays Paris 2025 | Building Agentic Workflows
byapidays
 
The Transformative Technology in Contemporary Businesses
bygreyaudrina
 
Oracle Cloud Infrastructure 2025 Architect Professional (1Z0-1127-25) Master ...
byExamCert App
 
Digital Twin in IBM for Accelerated Discovery of Climate & Sustainability, K...
byMichiaki Tatsubori
 
Spacecraft Guidance Quick Research Guide by Arthur Morgan
byArthur Morgan
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
UiPath Automation Developer Associate Training Series 2026 - Session 3
byDianaGray10
 
CTO Strategy OS 2026: The Tech, AI & Cloud Playbook Boards Want
byridwansassman
 
Introducing VisualSim 2610 The Next Leap in System Level Modeling
byDeepak Shankar
 
shayk.online - Anonymous chat with Sinatra and WebSockets
byEleanor McHugh
 
20260212 Security-JAWS activity results for 2025 and activity goals for 2026
byTyphon 666
 
From Hallucinations to High-Confidence AI with Data Enrichment.pdf
byPrecisely
 
Empower your IT team with cloud-based PC management using Dell Management Por...
byPrincipled Technologies
 
GenerationAI_Paris_2025_Architecting_Intelligence.pdf
byapidays
 
TrustArc Webinar - From Trends to Action: Fitting AI Governance into Privacy Ops
byTrustArc
 
Automated Governance for FME Flow: Smarter Admin at Scale
bySafe Software
 
Workflow and decision Automation with Flowable
bychakib ch
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
GenerationAI Paris 2025 | AI in Tech: Beyond Expectations, Into Execution
byapidays
 
Tech Trends 2026: AI Agents, Quantum Computing, Robotics & Cybersecurity
byridwansassman
 

LeanIX Virtual Workspaces

  • 1.
    Webinar How to reducecomplexity by segregating your data with Virtual Workspaces Felix Hoffmann, Product Management 2019-09-24
  • 2.
    2 Felix Hoffmann Product Manager@ LeanIX GmBH @Sisp3ks Felix Hoffmann felix.hoffmann@leanix.net Mathematician by trade Strong interest into Data Science (NLP, ML, …) Responsible for Core Product at LeanIX Ask me about: Ballroom Dancing and Table Tennis
  • 3.
    3 Agenda ... • How itworks Virtual Workspaces • Live Demo LeanIX Introduction Q&A • Overview
  • 4.
  • 5.
    5 We are atrusted partner to make your EA program successful 5 • Founded in 2012, backed by leading investors • 200+ customers in > 50 countries • 150+ employees in 2 offices: Bonn & Boston • Winner Deloitte Fast 50 & Best Place to Work
  • 6.
    6 > 150 employeesdriving innovation in EA 159 Team Members 33 Average Age 24 Nationalities 2 Offices 1 Team
  • 7.
    7 LeanIX enables intuitiveanalysis in business context and facilitates faster decision taking Large Enterprises High-growth tech
  • 8.
    8 We are athought-leader in modern IT Architectures Interactive, fast visualization and strong reporting capabilities Fully flexible data model in cost-efficient, multi-tenant approach Developer-friendly GraphQL API to build extensions Integration with Enterprise Eco-system – ServiceNow, Signavio State-of-the art Microservices architecture & Docker deployment Pathfinder Technology
  • 9.
    9 Thought leaders havemoved to LeanIX Industrials & Manufacturing Financial & Insurance Consumer Energy & Materials Healthcare Tech, Media & Telecoms Logistics Travel Full list of official reference customers behind this link: https://www.leanix.net/en/ecosystem/customers
  • 10.
    10 Agenda ... • How itworks Virtual Workspaces • Live Demo LeanIX Introduction Q&A • Overview
  • 11.
  • 12.
    Motivation: Restrict Users‘ Viewto Essential Information Average size of workspaces1 increases • 6700 Fact Sheets (max 70 k) • 23 k Relations (max 215 k) Necessity to keep Overview • Instant access to relevant information • Streamline information • Interactive collaboration (1) Among customers in ultimate edition, as of May 2019
  • 13.
    13 When you thinkof Virtual Workspaces ... "As a user it should feel like there is nothing else in the [EA] world." - Senior Manager of EAM in Pharmaceuticals
  • 14.
    14 Key Concepts ACE Virtual Workspaces RBAC ACL • AccessControl Entity • ID (internal) • Name • Display name • Description • Access Control List • List of ACEs, e.g. on a Fact Sheet • Name of the Feature • Each VW is defined by an ACE • A virtual workspace establishes a boundary within a (physical workspace) • Role-based access control • Works on a per Fact Sheet type basis
  • 15.
    Role-based permission model(1/2) – Separate Admin, Member and Viewer by default 15 Name & Description Projects Business Support Data Management Sourcing Administration Name & Description Projects Business Support Data Management Sourcing Administration Name & Description Projects Business Support Data Management Sourcing Administration 1 Admin 2 Member 3 Viewer • Default Roles can be managed inside the customer’s IdP or in LeanIX • Custom Roles can be added, then roles need to be managed inside the customer’s IdP* • Different Permissions can be maintained per Fact Sheet Type* • Write and read access can be controlled on attribute level * * Requires Add-On “Configuration Full” Read & Write Access Read Access No Access
  • 16.
    Role-based permission model(2/2) – Bring in new roles and/or permissions 16 Name & Description GDPR Projects Business Support Data Management Administration Name & Description GDPR Projects Business Support Data Management Administration Name & Description GDPR Projects Business Support Data Management Administration 1 Admin 2 Member 3 Viewer Sourcing Sourcing Sourcing Name & Description GDPR Projects Business Support Data Management Administration 4 Sourcing • Default Roles can be managed inside the customer’s IdP or in LeanIX • Custom Roles can be added, then roles need to be managed inside the customer’s IdP* • Different Permissions can be maintained per Fact Sheet Type* • Write and read access can be controlled on attribute level * * Requires Add-On “Configuration Full” Read & Write Access Read Access No Access Data Privacy Officer
  • 17.
    17 Virtual Workspaces allowfull separation in a workspace A One Workspace Multiple Physical WorkspacesVirtual WorkspacesB C Region EU Workspace Region EU Brand 1 Brand 2 Bus Cap A Bus Cap A Brand n Bus Cap A Group View Bus Cap A App 1 App 2 App 3 Bus Cap A App 1 App 2 App 3 User Group A User Group B User Group C Region EU Other Workspaces Workspace Bus Cap A App 1 App 2 App 3 User Group A User Group B User Group C Other Workspaces Brand 1 Brand 2 Brand 3 Brand 1 Brand 2 Brand 3 • Transparency across brands • Common Business Capabilities • Group-view built-in • One configuration for all • Logical Separation of brands • Common Business Capabilities • Group-view built-in • One configuration for all • Strong Separation of brands • Separate Business Capabilities • Specific configurations per brand • Custom implementation to generate Group View (via API)
  • 18.
    18 Role-based permission modelvs. Virtual Workspaces Virtual Workspaces Set Read / Write permissions on a single Fact Sheet Role-based permission model Set Permissions for some operation among all FS of a type
  • 19.
  • 20.
    20 A flexible conceptusing Access Control Entities (ACE) and Access Control Lists (ACL) ACE ACE ACE ACE Brand 1 Brand 2 Brand 3 Group View Board Manag- ment Teams Global EA BPM IT OPS Brands Information Access Views on data EMEA APAC AMER OTHER Regions
  • 21.
    21 Divide LeanIX Workspaceby Geographic Distribution / Brands / Subsidiaries … Structure your Workspace by company structures Specific configurations/brand Strong Separation of brands User Group Application
  • 22.
    22 Protect only someassets for a very sensitive part of company SensitiveSensitive Confidentiality Secure data segregation
  • 23.
    23 Divide LeanIX Workspaceby Department / Business Capability Built-in Group-view One configuration for all Logical Separation by Business Capabilities Data Objects Business Capabilities User Groups Applications IT Components Technical Stacks Providers
  • 24.
    24 Write-Protection: Teams All userscan see everything, but I can only edit the Fact Sheets of ‘my team‘. ACE ACE ACE ACE
  • 25.
  • 26.
    26 A user getsAccess Control Entities via SSO User‘s Workspace Permission can have.. Fact Sheet can have … ACL has.. has common entities? ACE = Access Control Entity ACL = Access Control List Active Directory SSO ACE ACE ACE ACE ACE ACE ACE ACE
  • 27.
    27 Read Access isincluded into Write Access Global Read Write Whitelist approach Users will automatically assign “correct” permission Admins can configure more sophisticated scenarios Define on a per Fact Sheet type basis Fact Sheets that I have access to
  • 28.
    28 Determining Read andWrite Access [ ] [ ] [ Marketing ] [ ] [ Marketing ] [ Marketing ] Read Access Write Access Result Everyone can read and write Everyone can read, only Marketing write Only Marketing can read or write [ Marketing, HR ] [ Marketing ] Only Marketing can read and write, HR can only read
  • 29.
  • 30.
  • 31.
    31 Summary: LeanIX VirtualWorkspaces Granular Data Segregation Scalable Customizable Secure Enterprise-Ready Professional & Ultimate Editions Paid Add-On Available Now • Control access to individual Fact Sheets • Minimal administrative work by populating access controls via SSO