Access Control Plus is BlueOptima’s access control layer for Git and Subversion.
It centralizes repo permissions, integrates with your existing identity systems, and keeps access policies consistent across your development environment.
Where Access Control Plus Excels
Access Sprawls Across Files, Repositories, and Teams
Scattered permissions create fragile security. Access Control Plus centralizes policy so access stays consistent everywhere.
Managing Leavers and Joiners
As repositories and teams grow, manual permission management breaks down. Automate and standardize access so governance scales with your organization.
Security Policies Differ Across Environments or Locations
Prevent sensitive code being exposed by ensuring the same access rules apply across Git and Subversion, wherever your teams work.
Benefits of
Access Control Plus
Simplify User Management & Administration
Integrate with Existing Identity Systems
Access Control Plus integrates with LDAP and Active Directory so user authentication and permissions stay aligned with your organization’s identity management. User provisioning and removal happen automatically as roles change.
Standardize Repository Access with Templates
Define consistent repository structures and access policies using reusable templates for Git and Subversion. Platform teams spend less time configuring individual repositories while permissions remain consistent across projects.
Implement Granular, Reliable Security
Fine-Grained Access Control
Set control permissions for users and teams down to individual branch levels. ACP integrates with LDAP and Active Directory for simplified user management. It ensures only authorized users can access sensitive code, enhancing security and code quality.
Pattern-Based Rules
Use wildcard rules to apply permissions across repositories, branches, and paths without creating dozens of individual policies. This keeps governance manageable even as environments grow.
Protection for Sensitive Code
Restrict access to specific repositories, branches, or paths so only authorized teams can view or modify critical code.
Enable Secure Global Collaboration
Centralized Governance
Manage permissions across all Git and Subversion repositories from a single interface. Platform and security teams gain a clear view of who has access to what across the organization.
Consistent Policies Across Locations
Access Control Plus synchronizes access control changes across distributed environments so security policies stay consistent everywhere. Teams collaborate globally while governance remains centrally controlled.
How Global Engineering Teams Scale
Customer Success Stories
Remote developers latency problem
Problem
- Remote developers experience significant latency and slowdowns when accessing the single Subversion repository located at their headquarters, hindering productivity and collaboration.
Solutions
- Deploy Subversion Active MultiSite at locations geographically close to development teams to establish multiple active-active replicas of the repository across different locations.
Results
- Remote developers experience dramatically faster response times, leading to increased productivity and improved collaboration.
- The risk of downtime and data loss is minimized, providing peace of mind for the organization.
Disaster recovery solution with a large number of developers at a single site
Problem
- A company with a large development team concentrated in a single location relies on a centralized Subversion server.
Solution
- Implement Subversion Active MultiSite to create offsite or cloud-based replicas of the repository data.
- This offsite replica acts as a disaster recovery site, providing a readily available backup of the repository data.
Results
- The risk of data loss is significantly reduced, protecting valuable intellectual property.
- Developers can continue working with minimal interruption, even if the primary site becomes inaccessible.
3rd party in another geographical location to be able to access a subset of their data for collaboration
Problem
- An organization needs to share a specific portion of their Subversion data with a third-party partner located in a different region.
Solution
- Utilize the selective replication feature of Subversion Active MultiSite to replicate only the required subset of data to a new site accessible to the third-party partner.
Results
- The company achieves secure and efficient collaboration with its third-party partner.
- Data synchronization issues are eliminated, ensuring everyone works with the latest information.
- The main repository remains protected, with access limited to authorized personnel.
FAQs
What level of technical expertise is needed to use and administer Access Control Plus?
Anyone capable of administering a normal Subversion server installation will have sufficient skills to make use of ACP. In fact, ACP will make their life easier in terms of handling the tiny but critical details of creating perfectly formed Authentication and Authorization files and delivering them to the proper location.
Can Access Control Plus integrate with other BlueOptima products?
Yes, ACP integrates seamlessly with Enterprise Subversion MultiSite and Enterprise Git MultiSite to provide a central source for access control in a replicated environment.
How does Access Control Plus handle access control for different types of repositories?
The core ACP functionality remains the same between Git and SVN however there are some differences in the available rules for each system. For more information contact us to discuss your individual implementation requirements.
How does the 'Generic File Replication (GFR)' feature work in practice?
GFR allows ACP to provide access control files to BlueOptima’s replication products which can then apply these at each site without the need to manually update each replica.
Can Access Control be customized for individual users or groups, and are there different permission levels?
Yes, ACP is based on the concept of “teams”. Each user account can be a member of as many teams as necessary. Repository access rules are then applied to teams as required to allow/deny access. ACP can also provide either read-only or read-write access as required.
How can administrators use wildcards to define Access Control rules effectively?
ACP supports a variety of SVN wildcards. To do so it provides an implementation of rule priorities in order to enable the administrator to sort the rules in a desired order to achieve their desired outcome.
What specific versions of LDAP and Active Directory are compatible with Access Control Plus?
ACP is compatible with any LDAP provider. Updates in-line with the SVN OpenSource releases.
What is the expected performance of Access Control Plus when managing a large number of repositories and users?
ACP can scale from very small to very large environments. It has been proven to work with many thousands of repositories.
How does Access Control Plus handle the growth in the number of users, repositories, and teams?
The number of users in ACP is limited only by the purchased license. Your BlueOptima account manager will be able to work with you to increase this at any time.
Can Access Control Plus be integrated into your DevOps environment?
Yes, ACP has 100% REST API coverage enabling your automation to create, modify and remove accounts, rules, repositories, templates and a whole lot more.
Does Access Control Plus have any visibility into end user account repository access?
Combined with capabilities installed with GitMS and MSP, ACP can track the latest access of accounts to your repositories. This enables what we call “Account Access Auditing” so that you can see which repositories and/or accounts are no longer in use and therefore either disable them or remove them from ACP entirely. Be aware: this is not “compliance auditing”.
Performance & Specifications
Authentication
- LDAP
- SSHD
- Apache password
Linux
- RHEL 7, 8, 9
- Rocky 8, 9
- CentOS 7
- Debian 10, 11
- SLES 12, 15
Java
- Oracle
- OpenJDK
Resources
Git Binaries
Git Version | Operating System (OS) | Download |
|---|---|---|
2.39.1 | CentOS 6 - Git 2.39.1 | Download |
2.39.1 | CentOS 7 - Git 2.39.1 | Download |
2.39.1 | RedHat Enterprise Linux 6 - Git 2.39.1 | Download |
2.39.1 | RedHat Enterprise Linux 7 - Git 2.39.1 | Download |
2.39.1 | SUSE Linux Enterprise 11 - Git 2.39.1 | Download |
2.39.1 | SUSE Linux Enterprise 12 - Git 2.39.1 | Download |
2.39.1 | Ubuntu 12.04 - Git 2.39.1 | Download |
2.39.1 | Ubuntu 14.04 - Git 2.39.1 | Download |
2.31.1 | Windows x64 | Download |
2.31.1 | Ubuntu 20.04 Focal | Download |
Secure Your Environment Without Slowing Teams Down
We support the world's largest Subversion implementations, with as many as 40,000 users and 2,500 Subversion repositories in a single organization.