|
|
|
|
|
|
|
|
|
MSF for CMMI Process Improvement > Wiki Pages > Activity - Establish Configuration Management Access Control Policy
|
Activity - Establish Configuration Management Access Control Policy
|
|
|
|
|
|
Activity Information Establish Configuration Management Access Control Policy
DescriptionThe access control policy defines how each role interacts with the configuration items. The access control policy must define security groups and permissions, check-in policy, and check-in notes. StepsDetermine Groups and Permissions:
Examine the configuration items in the configuration management plan. Determine which groups are necessary to maintain the integrity of each configuration item.
For each configuration item, consider each role that interacts with that configuration item. Determine which permissions each role needs. The general approach should be to give each role the least number of permissions while still enabling them to do their work. Determine Check-in Policies:
Determine which check-in policies should apply to the team project. Consult the configuration management guidelines for available check-in policies and to what types of projects they should be applied.
Define other configuration management policies. For example:
Minimum check-in frequency. This will minimize lost work in the event of system malfunctions (that is, shelve all work before going home at night).
Ensure that all work products exchanged between development tasks go through the configuration management system. Determine Check-in Notes:
Determine which check-in notes should apply to the team project. Consult the configuration management guidelines for suggested check-in notes and to what types of projects they should be applied. Document Access Control Policy:
Document all of the policy decisions (security, check-in policy, check-in notes) in the configuration management access control policy.
|
Last modified at 12/19/2007 10:37 AM by Administrator
|
|
|
|
 |
|
|
|
|