1 / 23

February 11-13, 2019 Raleigh , NC

February 11-13, 2019 Raleigh , NC. Break Into Informer 4 Security. Presenter : Sarah Rodger Informer Support Specialist. Agenda. What Can You Secure ? Informer Security Hierarchy Common Models Pitfalls to Avoid Troubleshooting Tips Q&A. What Can You Secure?. Custom Export Templates

bryon
Télécharger la présentation

February 11-13, 2019 Raleigh , NC

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. February 11-13, 2019 Raleigh, NC

  2. Break Into Informer 4 Security Presenter: Sarah Rodger Informer Support Specialist

  3. Agenda • What Can You Secure? • Informer Security Hierarchy • Common Models • Pitfalls to Avoid • Troubleshooting Tips • Q&A

  4. What Can You Secure? • Custom Export Templates • Dashboards • Datasources / Databases • Mappings / Files / Tables • Properties / Fields / Columns • Row-level data (via plugin) • Reports (Informer & SQL) • Report Features (ex: Edit, Copy, Export, Delete) • System Controls and Settings • Archives

  5. Permissions versus Sharing Sharing: who can see the report • Found on the Report Template page in the “Sharing” section • Can be Public, Private or Available only to groups and users listed Permissions: what they can do with it • Edit, copy, export, etc.

  6. Informer Security Hierarchy If User/Group is not listed, they inherit the “EVERYONE” or “OWNER” defaults.

  7. Where to Secure? • Security Tab: Select Users or Groups to secure • See Security > Root Permissions > Select Group or User affected. • Mappings Tab: Select object to secure • datasource -> Overview • mapping -> Overview • property - > Overview • Then click the “Permissions” Icon found top right. Select Group or User affected. • Report Template Tab: in the top right corner… if the user has permission to make changes

  8. Example Example: “Report Runners” Group permissions for reports against the Informer Datasource Secured by User or Group • Go to: Security / Root Permissions / for Report Runners Secured by Data • Go to: Mappings / Datasource / Permissions / for Report Runners • User will need to logout/login to see permission changes.

  9. Working with Users & Groups • Groups and Users • Local • LDAP • Combination • Security Tab: • Users: Add, Delete & Password Reset • Groups: Add, Delete & Edit Membership • LDAP: configure connection Only the local “administrator” account can Impersonate users

  10. Best Practices: Group by Job Function

  11. Better: Data Access & Job Function

  12. More Rules? Or More Exceptions? Two primary approaches: • Lock everyone out and modify to grant access • Lock no one out and modify to deny access Which results in fewer modifications?

  13. Pitfalls to Avoid The most restrictive setting wins! Best practice is to assign users to a single group

  14. Don’t Use Overly Complex Model

  15. Do Create Specialized Groups

  16. Troubleshooting Tips

  17. Add Individual User to Permissions But don’t SAVE, Just review the defaults

  18. Run Security Audit

  19. Run Security Audit

  20. Run Security Audit

  21. Useful Help Center Articles • * Security Audit Report * • * Researching Permission Issues * • Managing Users and Groups • How Informer security works • Permissions • Principal Types • Using LDAP and Active Directory • How do I limit Informer access to users in a specific LDAP group?

  22. Thank you! Any questions?

  23. February 11-13, 2019 Raleigh, NC

More Related