 |
|||||
|
As of December 1, 2020, Focal Point is retired and repurposed as a reference repository. We value the wealth of knowledge that's been shared here over the years. You'll continue to have access to this treasure trove of knowledge, for search purposes only. Join the TIBCO Community
Former myibi community members should have received an email on 8/3/22 to activate their user accounts to join the community. Check your Spam folder for the email. Please get in touch with us at community@tibco.com for further assistance. Reference the community FAQ to learn more about the community. | |||||
Read-Only TopicGo | Search | Notify | Tools |
| Developer Studio issues | Login/Join |
| Guru |
Hi, I have a development webfocus environment and production one. I am the webfocus administrator and would like to secure the production environment by: 1/ Prompting the developer for his/her login and passowrd when he/she tries to access the prod environment using developer studio. 2/ Also I do not want all developers to access everything: I mean each will access only the application folder he/she autorized to work in. Any suggestion will be greatly apreciated. Majid WebFocus 7.6.5 AND WebLogic server as web server sql2005 as database server | ||
|
| Expert |
Developer Studio is a desktop application. Access to Production in DS is by adding that environment/server, or, only allowing access to development. Login is not available. Limit application folders via the server, User Profiles, APP PATH logic... Tom Flynn WebFOCUS 8.1.05 - PROD/QA DB2 - AS400 - Mainframe | |||
|
| Guru |
Hi Tom, The Developers in my organization know both DNS names for development and production environment. They just add these servers and then they access everything. I would like them to be able to add whatever environment they want but as soon as they expand that environment they will be asked to enter their login and password. Limiting the access by the user profile means that I am able to identify them. For time being I am not able. Is that posiible? WebFocus 7.6.5 AND WebLogic server as web server sql2005 as database server | |||
|
| Guru |
You are supposed to be able to do what you want with the right combination of: 1. Security PTH (instead of OPSYS) on the Reporting Server 2. APP LOCK 3. User profiles for the developers. This is something we want to try (it was recommended by IBI consultants) but we haven't set it up yet, so I can't vouch that it works. (Prod: WebFOCUS 7.7.03: Win 2008 & AIX hub/Servlet Mode; sub: AS/400 JDE; mostly Self Serve; DBs: Oracle, JDE, SQLServer; various output formats) | |||
|
| Virtuoso |
Are you referring to a Dev and Prod MRE environment? If so, the default behavior is to prompt for an MRE user id and password when trying to expand the MRE repository in an environment. What is probably happening is they are all using the admin ID (with or without a password.) If you lock down that account and create separate user id's for the developers, they will have to use their own logins. Also, if the WF server is secured, they would have to be entering a valid id/pass to run anything. Where is that coming in to play? Regards, Darin In FOCUS since 1991 WF Server: 7.7.04 on Linux and Z/OS, ReportCaster, Self-Service, MRE, Java, Flex Data: DB2/UDB, Adabas, SQL Server Output: HTML,PDF,EXL2K/07, PS, AHTML, Flex WF Client: 77 on Linux w/Tomcat | |||
|
| Expert |
The only way I know is to not allow them to enter their LAN ID's within the environment for MRE or EDASERVE. Then, they have to log in - this is probably logged on the reporting server, I don't know; this has never been an issue for me. May want to open a case with IBI and they can give you direction. Limiting access: NORMALLY, we add a user id which is exactly as the LAN ID with a blank password In the site.wfs file, you pass this to the server Place this command into the file on the client (DRIVE:\ibi\client76\wfc\etc\site.wfs ) <SET>IBIMR_user(PASS) In the User Profile for that ID, you can add: APP PATH FOLDER1 FOLDER2 FOLDER3 ETC In MRE Administration, give them only the DOMAINS you want them to access, only DEV DOMAINS - only PROD DOMAINS - combination Outside of all this, make them only log into MRE as an Analytical User, OR, get help from IBI with the above suggestions... Tom Flynn WebFOCUS 8.1.05 - PROD/QA DB2 - AS400 - Mainframe | |||
|
| Expert |
Majid, I am assuming that you are on a Windows platform and that you are talking about self-service application directories. We have a Unix environment and it is much easier to do what you are saying in Unix than in Windows. You must first have security turned on in the Reporting Server. You can choose to have a default id for the application users (as opposed to developers) to execute pages and programs. But for the application developers, could you not do something with the directory share permissions on Windows to lock directories down to specific users? We do that in Unix-land with group permissions by directory. The more important question is why developers are allowed to change code in the production environment anyway. Hope this helps. It is a framework that you'd have to see if it works in your environment. Ginny --------------------------------- Prod: WF 7.7.01 Dev: WF 7.6.9-11 Admin, MRE,self-service; adapters: Teradata, DB2, Oracle, SQL Server, Essbase, ESRI, FlexEnable, Google | |||
|
| Powered by Social Strata |
 | Please Wait. Your request is being processed... |
Read-Only TopicCopyright © 1996-2020 Information Builders
| View $GS_USERNAME's Public Profile |
| Add $GS_USERNAME to my Ignore List |
| View Recent Posts by $GS_USERNAME |
| Notify me of New Posts by $GS_USERNAME |