Advice on security model

system · October 21, 2009, 11:10am

I’m trying to create a new security model for use with a new suite of universes whereby the most data and objects are hidden when users are in the fewest security groups.

Does anyone have any advice for how best to achieve this with either large self-contained universes or with a series of linked universes.

So far I’ve run up against the fact that universe object level restrictions only work to restrict access, not allow access to hidden objects, and if you don’t grant access to a univese that links to another universe then you can’t use either of them.

My experience so far is that universe security doesn’t work very well this way round, but I’m hoping someone might have an imaginative solution.

We use BOXI R2 SP4 on Windows servers.

thanks
Keith

Keith Fisher (BOB member since 2009-10-21)

SebastienGoiffon · October 22, 2009, 9:54am

Hi and welcome to BOB,

The first option is indeed using restrictions (universe overloads). It seems not to work for you maybe due to linked universe.

Did you try using object security properties (public, private, confidential …)?

system · October 22, 2009, 9:58am

thanks for your suggestions. I’m not sure what the object security properties are actually used for, can you provide any more detail on their use?

Keith Fisher (BOB member since 2009-10-21)

SebastienGoiffon · October 22, 2009, 10:07am

Within the Designer you need first to specify wheither or not an object is confidential/public/private …

Then within the CMC you need to specify per universe (or universe folder) which groups could access those rectricted objects …

system · October 22, 2009, 10:12am

that might well be what i need, I shall have a play with those settings,

thanks

Keith Fisher (BOB member since 2009-10-21)