informer security
Post on 10-Jan-2016
30 Views
Preview:
DESCRIPTION
TRANSCRIPT
Informer Security
PRESENTER: Tim Nicholson | tim@entrinsik.com | March 5-6, 2012
• Secure All Areas of Informer– Reports
• Informer-based
• Native SQL
– System controls and settings
– Archives
– Data sources (databases)
– Mappings (files/tables)
– Properties (fields/columns)
– Export Templates
– Row-level security
– Dashboards
• Groups and Users– Local– LDAP– Combination
Adding Users
Adding Groups
Adding Users to Groups
Root
Datasource
Mapping
Report Property Archive
Export Template
Security Structure
Root
PERSON
Deny All Files
Grant
SSN
Deny
General Users
Power Users
Root
PAYROLL
Grant All Files
Deny
Conflict• User in more than one group• Same level– Explicit overrides inherited– Deny overrides Grant
SSN
Group A Group B
Explicitly Granted Explicitly Denied
Deny Wins
Group A Group B
Explicitly Granted Inherently Denied
Explicit Wins
Two Levels of Enforcement• Presentation layer• Logic layer
System Settings– Controls access to system settings– Admins only??– Settings
• Maintain groups and users• Maintain LDAP settings• Edit system settings• Create export templates• Manage user fields• View all reports• Maintain all schedules
Reports– Controls what users and groups can do with reports shared to them– Settings
• Launch• Schedule• View definition• Share• Make personal copy• Export• Archive• Live Excel• Edit, copy or delete• Lock• Manage tags• Use database commands (TCL/ECL or SQL Where clause)
– Native Reporting• Edit• Run
Archives– Controls access to archived reports– Settings• View• Export• Delete
Data Sources– Controls access to database connections– Settings• Create• Add mappings• View connection settings
Mappings– Files/Table access– Settings• View property and association metadata• Create reports
Properties– Fields/Columns– Default grant or deny access to properties– Settings• View in a report column• Use in report criteria
Export Templates– Defines PDF format– Settings• Use when exporting• Change• Delete
• Function Definitions– Stored calculated columns– Settings• Edit• Delete
Troubleshooting Security• Impersonate– Must be Informer Administrator
• Object Permissions– See what permissions a user has
Examples
Thank you! Any questions?
top related