The One CMDB
The One CMDB is a configuration management database built for managed service providers. It provides a centralized repository for tracking every asset in your client environments — workstations, servers, network devices, cloud resources, software licenses, and more — with HSM-encrypted password vault, IT documentation, knowledge base, and network topology visualization.
What CMDB Does
| Capability | Description |
|---|---|
| Configuration Items | Track every asset type with custom fields, criticality levels, lifecycle states, and environment tags |
| Flexible Assets | Create custom asset types with metadata-driven field schemas — like IT Glue flexible assets |
| Password Vault | Store credentials with HSM-backed AES-256-GCM encryption, checkout system, rotation policies, and anomaly detection |
| IT Documentation | Maintain wikis, runbooks, SOPs, and policies with rich text editing, versioning, and review tracking |
| Knowledge Base | Publish customer-facing articles with categories, analytics, and client portal integration |
| Network / IPAM | Manage subnets, IP addresses, and VLANs with usage tracking and CI linkage |
| CI Relationships | Map dependencies between assets (hosts, depends on, connects to, virtualizes) and visualize topology graphs |
| Auto-Discovery | Automatically import devices from RMM with matching workflows and configurable sync intervals |
| Reports | Inventory breakdowns, documentation coverage gaps, warranty expiration tracking, and staleness detection |
| Cross-Product Search | Full-text search across CIs, documents, passwords, articles, subnets, and flexible assets |
| Import / Export | Bulk JSON export and IT Glue import for seamless migration from existing documentation platforms |
Who Uses CMDB
- MSP technicians — look up device details, access passwords, follow runbooks, and check network documentation during ticket resolution
- Security administrators — tag assets storing PHI/PII for compliance, review criticality classifications, and monitor Defend threat status per asset
- Compliance officers — audit password access logs, verify documentation coverage, track asset lifecycle and disposal, and generate compliance reports
- Service desk managers — maintain up-to-date client documentation, ensure warranty tracking, and link CI changes to PSA change tickets
- Clients — access published knowledge base articles through the Portal
How CMDB Fits in the Stack
CMDB is the asset documentation backbone of The One Stack. It connects to:
- RMM — enrolled devices automatically sync into CMDB as configuration items every 4 hours; password reveals can be triggered from RMM device context
- Defend — reads CMDB criticality and PHI tags to escalate alert severity; CMDB shows last known threat status per asset
- PSA — provides CI context for tickets, enabling technicians to pull up full asset details from within a ticket; CI changes can link to PSA change tickets
- Portal — published knowledge base articles are accessible to clients through the Portal
- Hub — all authentication flows through Hub SSO; team members, roles, and permissions are managed centrally
ℹ️
CMDB requires a Hub organization. All authentication flows through Hub SSO, and your team members, roles, and permissions are managed in Hub.
Prerequisites
Before using CMDB, ensure you have:
- A Hub organization set up with at least one admin user
- Team members invited through Hub with appropriate roles
- Clients added (either directly or imported from CRM/PSA)
- RMM deployed on client devices (optional, for auto-discovery)
Next Steps
- Getting Started — Initial setup and first asset import
- Configuration Items — Managing your asset inventory
- Password Vault — Secure credential management
- IT Documentation — Wikis, runbooks, SOPs, and policies
- Integrations — Connect CMDB to other products in the Stack