Keeping ACL entries to a minimum by granting permissions through group memberships is widely considered to be an ACL best practice. Wouldn't you like a reliable system for exploring ALL groups for a clear picture of the access rights they provide for their members?
aclEZ is vast departure from traditional methods of group permission management. Examine ACL entries and all of their members (if applicable) from as little as a single database or as much as an entire server in aclEZ's dynamic, intuitive grid-style UI. Get a closer look into your groups from the inside out. Drill down into them too see the entire structure of membership regardless of how many subgroups they contain.
You'll have all the tools you need to deal with groups and their members:
- Benefit from instant lookups to your Names and Address Book(s) to get a full view and understanding of all groups and their members.
- "Expand" ANY group type ACL entry for a complete analysis of inner subgroups and members. See EVERY subgroup, member, and their access level to the database concerned as well as their position inside the entire hierarchy.
- Sort and filter your data based on any combination of attributes.
Get all the details for the groups on your servers; whether it's for one group, or groups across an entire server, no matter how many ACLs you load, no matter how many databases they belong to, the same level of detail applies.
Retrieve a list of ALL the applications a given user can access, and analyze the means by which they are granted access to them.
In the Domino Administrator and Notes client, identifying all the applications a given user has access to is an extremely tiresome process. The flexible main grid of aclEZ makes it simple to show all ACL entries that belong to a given user.
However, in order to know what the user can access, it is not enough to look at only User type ACLs. We also need to find out which groups they belong to; this is where the built-in Expand Nested Groups mode comes into play. All-in-all, you're just a few clicks away from an evaluation of a user's access reach.
Find out who has access to a given application, and what grants them access to it.
Companies usually manage Application Access rights through NAB Groups designated specifically for ACLs. This process makes it easier to manage Access Rights, however it makes it close to impossible to look at an ACL and get a thorough understanding of all users who can access the DB and what rights they have. It's easy to get the full picture of all the different ways a database can be accessed—and by who.