Streamline source code security across all your Subversion and Git repositories. Access Control Plus provides a single, intuitive interface to manage permissions, reduce administrative overhead, and ensure your code is always protected.
What is Access Control Plus?
Access Control Plus (ACP) is a centralized identity management platform that gives you complete command over your source code. It allows you to easily control who can view, edit, or interact with your code, regardless of where your repositories are located.
By integrating seamlessly with your existing user directories and providing powerful automation tools, ACP simplifies permission management, eliminates human error, and gives you a comprehensive view of your security posture from a single pane of glass.
Benefits of
Access Control Plus
Simplify User Management & Administration
LDAP/Active directory integration
ACP integrates seamlessly with LDAP and Active Directory for centralized user authentication and authorization. This automates user provisioning and de-provisioning, simplifies management, and enhances security.
Repository templates
ACP simplifies repository management by using templates to define access control and file locations for Git and Subversion. It streamlines authentication with httpd and SSH key access, reducing administrative effort, ensuring consistency, and minimizing errors.
Implement Powerful, Granular Security
Fine-grained access control
ACP provides organizations with precise control over user permissions, enforcing the principle of least privilege to protect source code. It prevents unauthorized access, reduces security risks, and integrates with LDAP and Active Directory for simplified user management. ACP ensures only authorized users can access sensitive code, enhancing security and code quality.
Wildcard support
ACP simplifies permission management with advanced features like wildcard support, allowing administrators to create flexible, pattern-based rules for branch names, tags, and paths. This reduces the need for individual rules, ensuring efficient and consistent access control for common workflows.
Protection for Sensitive Code
Ensure only authorized personnel can access sensitive code repositories and branches. (Visibility of sub-repository items can be blocked in SVN only).
Enable Secure Global Collaboration
Centralized Control
Manage all your Subversion and Git repositories from a single, intuitive interface, providing a comprehensive view of your security posture across the entire organization.
Generic file replication (GFR)
ACP uses BlueOptima’s GFR technology to synchronize access control changes and authentication files across distributed teams. This ensures policies are applied consistently everywhere, improving collaboration and system availability.
Case Studies from
Global Leaders
Key Results:
Remote developers latency problem
Problem
- Remote developers experience significant latency and slowdowns when accessing the single Subversion repository located at their headquarters, hindering productivity and collaboration.
Solutions
- Deploy Subversion Active MultiSite at locations geographically close to development teams to establish multiple active-active replicas of the repository across different locations.
Results
- Remote developers experience dramatically faster response times, leading to increased productivity and improved collaboration.
- The risk of downtime and data loss is minimized, providing peace of mind for the organization.
Disaster recovery solution with a large number of developers at a single site
Problem
- A company with a large development team concentrated in a single location relies on a centralized Subversion server.
Solution
- Implement Subversion Active MultiSite to create offsite or cloud-based replicas of the repository data.
- This offsite replica acts as a disaster recovery site, providing a readily available backup of the repository data.
Results
- The risk of data loss is significantly reduced, protecting valuable intellectual property.
- Developers can continue working with minimal interruption, even if the primary site becomes inaccessible.
3rd party in another geographical location to be able to access a subset of their data for collaboration
Problem
- An organization needs to share a specific portion of their Subversion data with a third-party partner located in a different region.
Solution
- Utilize the selective replication feature of Subversion Active MultiSite to replicate only the required subset of data to a new site accessible to the third-party partner.
Results
- The company achieves secure and efficient collaboration with its third-party partner.
- Data synchronization issues are eliminated, ensuring everyone works with the latest information.
- The main repository remains protected, with access limited to authorized personnel.
FAQs
What level of technical expertise is needed to use and administer Access Control Plus?
Anyone capable of administering a normal Subversion server installation will have sufficient skills to make use of ACP. In fact, ACP will make their life easier in terms of handling the tiny but critical details of creating perfectly formed Authentication and Authorization files and delivering them to the proper location.
Can Access Control Plus integrate with other BlueOptima products?
Yes, ACP integrates seamlessly with Enterprise Subversion MultiSite and Enterprise Git MultiSite to provide a central source for access control in a replicated environment.
How does Access Control Plus handle access control for different types of repositories?
The core ACP functionality remains the same between Git and SVN however there are some differences in the available rules for each system. For more information contact us to discuss your individual implementation requirements.
How does the 'Generic File Replication (GFR)' feature work in practice?
GFR allows ACP to provide access control files to BlueOptima’s replication products which can then apply these at each site without the need to manually update each replica.
Can Access Control be customized for individual users or groups, and are there different permission levels?
Yes, ACP is based on the concept of “teams”. Each user account can be a member of as many teams as necessary. Repository access rules are then applied to teams as required to allow/deny access. ACP can also provide either read-only or read-write access as required.
How can administrators use wildcards to define Access Control rules effectively?
ACP supports a variety of SVN wildcards. To do so it provides an implementation of rule priorities in order to enable the administrator to sort the rules in a desired order to achieve their desired outcome.
What specific versions of LDAP and Active Directory are compatible with Access Control Plus?
ACP is compatible with any LDAP provider. Updates in-line with the SVN OpenSource releases.
What is the expected performance of Access Control Plus when managing a large number of repositories and users?
ACP can scale from very small to very large environments. It has been proven to work with many thousands of repositories.
How does Access Control Plus handle the growth in the number of users, repositories, and teams?
The number of users in ACP is limited only by the purchased license. Your BlueOptima account manager will be able to work with you to increase this at any time.
Can Access Control Plus be integrated into your DevOps environment?
Yes, ACP has 100% REST API coverage enabling your automation to create, modify and remove accounts, rules, repositories, templates and a whole lot more.
Does Access Control Plus have any visibility into end user account repository access?
Combined with capabilities installed with GitMS and MSP, ACP can track the latest access of accounts to your repositories. This enables what we call “Account Access Auditing” so that you can see which repositories and/or accounts are no longer in use and therefore either disable them or remove them from ACP entirely. Be aware: this is not “compliance auditing”.
Performance & Specifications
Authentication
- LDAP
- SSHD
- Apache password
Linux
- RHEL 7, 8, 9
- Rocky 8, 9
- CentOS 7
- Debian 10, 11
- SLES 12, 15
Java
- Oracle
- OpenJDK
Resources
Git Binaries
Git Version | Operating System (OS) | Download |
|---|---|---|
2.39.1 | CentOS 6 - Git 2.39.1 | Download |
2.39.1 | CentOS 7 - Git 2.39.1 | Download |
2.39.1 | RedHat Enterprise Linux 6 - Git 2.39.1 | Download |
2.39.1 | RedHat Enterprise Linux 7 - Git 2.39.1 | Download |
2.39.1 | SUSE Linux Enterprise 11 - Git 2.39.1 | Download |
2.39.1 | SUSE Linux Enterprise 12 - Git 2.39.1 | Download |
2.39.1 | Ubuntu 12.04 - Git 2.39.1 | Download |
2.39.1 | Ubuntu 14.04 - Git 2.39.1 | Download |
2.31.1 | Windows x64 | Download |
2.31.1 | Ubuntu 20.04 Focal | Download |
Looking for Support?
We support the world's largest Subversion implementations, with as many as 40,000 users and 2,500 Subversion repositories in a single organization. In addition to our open-source software experts, we offer a number of other benefits to our support customers.