Recent changes to Securityhttps://sourceforge.net/p/maximoviewlog/wiki/Security/Recent changes to SecurityenThu, 12 Mar 2015 20:30:45 -0000Security modified by PlanetChrismanhttps://sourceforge.net/p/maximoviewlog/wiki/Security/<div class="markdown_content"><pre>--- v1 +++ v2 @@ -11,4 +11,4 @@ The system displays a friendly name for each log file. This hides the actual path to the log file from the users. Ignorance is not a great security model, but it is one. :) [Copyright Notice] -[Installation] +[Requirements] </pre> </div>PlanetChrismanThu, 12 Mar 2015 20:30:45 -0000https://sourceforge.net235862fdcdc770c58f814eb69f7794e3ce3a9facSecurity modified by PlanetChrrismanhttps://sourceforge.net/p/maximoviewlog/wiki/Security/<div class="markdown_content"><p>Security has been greatly enhanced in version 4. Security access is now integrated with the application. There are three security levels that you can use.</p> <div class="codehilite"><pre><span class="mf">1.</span> <span class="n">None</span><span class="p">.</span> <span class="n">This</span> <span class="n">option</span> <span class="n">leaves</span> <span class="n">the</span> <span class="n">main</span> <span class="n">application</span> <span class="n">open</span> <span class="n">to</span> <span class="n">anyone</span> <span class="n">who</span> <span class="n">has</span> <span class="n">the</span> <span class="n">URL</span><span class="p">.</span> <span class="n">It</span> <span class="n">also</span> <span class="n">leaves</span> <span class="n">the</span> <span class="n">administrative</span> <span class="n">screens</span> <span class="n">open</span> <span class="n">to</span> <span class="n">everyone</span><span class="p">.</span> <span class="n">Use</span> <span class="n">this</span> <span class="n">option</span> <span class="n">with</span> <span class="n">caution</span><span class="p">.</span> <span class="mf">2.</span> <span class="n">Some</span><span class="p">.</span> <span class="n">This</span> <span class="n">option</span> <span class="n">leaves</span> <span class="n">the</span> <span class="n">main</span> <span class="n">application</span> <span class="n">open</span> <span class="n">to</span> <span class="n">everyone</span> <span class="n">but</span> <span class="n">it</span> <span class="n">requires</span> <span class="n">anyone</span> <span class="n">that</span> <span class="n">tries</span> <span class="n">to</span> <span class="n">run</span> <span class="n">the</span> <span class="n">admin</span> <span class="n">screen</span> <span class="n">to</span> <span class="n">have</span> <span class="n">the</span> <span class="n">proper</span> <span class="n">security</span> <span class="n">setup</span><span class="p">.</span> <span class="mf">3.</span> <span class="n">Full</span><span class="p">.</span> <span class="n">This</span> <span class="n">option</span> <span class="n">set</span> <span class="n">the</span> <span class="n">main</span> <span class="n">application</span> <span class="n">with</span> <span class="n">security</span> <span class="n">access</span><span class="p">.</span> <span class="n">Then</span> <span class="k">for</span> <span class="n">those</span> <span class="n">who</span> <span class="n">will</span> <span class="n">run</span> <span class="n">the</span> <span class="n">admin</span> <span class="n">screen</span><span class="p">,</span> <span class="n">more</span> <span class="n">security</span> <span class="n">is</span> <span class="n">required</span><span class="p">.</span> </pre></div> <p>Security is handled by the application server hosting the LogViewer. You will create roles in the application server and then add users to those roles. No user names or passwords are stored within this application now.</p> <p>Since the user/service account that is running your application server is the one that accesses the log file, individual users do NOT need access to the actual log files on the server. If you install this tool on the same server as Maximo, then there should be no issue with accessing the file. You can install this tool on a different server but in order to access the log file, the service account running the application server will have to be a domain account and you will have to grant that account read access to the share/folder/log file.</p> <p>The system displays a friendly name for each log file. This hides the actual path to the log file from the users. Ignorance is not a great security model, but it is one. :)</p> <p><a class="alink" href="/p/maximoviewlog/wiki/Copyright%20Notice">[Copyright Notice]</a><br /> <span>[Installation]</span></p></div>PlanetChrrismanThu, 12 Mar 2015 19:26:59 -0000https://sourceforge.net5d7ed243c0f5801071bedcd4c75199959e4349d1