Administering and Securing the Environment
The new WebFOCUS Client repository and authorization
security model uses an implementation of Role-Based Access Control
(RBAC) to enforce security across all resources in the repository.
The flexibility of the new model enables an administrator to implement
security at a granular level for every resource in the WebFOCUS
repository.
Resource Analyzer and Resource Governor help Information Systems
(IS) organizations analyze and control end user data access, as
well as provide site-specific control options.
xWebFOCUS Client Repository and Authorization Security
The WebFOCUS Client Repository and Authorization Security
model expands and generalizes the access to Managed Reporting (MR)
and Business Intelligence assets.
Highlights of the WebFOCUS Client repository and authorization
security model include:
-
Resource Templates. To help organizations become
productive more quickly, WebFOCUS includes resource templates. These
templates create folders, portals, groups, roles, server application
directories, and security rules to help enterprise and SaaS providers
launch new departments or customers. You can also develop your own
custom resource templates.
-
Security Zones. Using security zones, you can authenticate
users with different methods based on their network location.
-
Remember Me. Administrators can configure an option so
users can bypass the sign in page.
-
Enhanced Configuration for Trusted Connections. Using
the WebFOCUS Administration Console, you can configure a trusted
connection to the Reporting Server, where the user ID and groups
are passed in the connection protocol.
-
Enhanced Security Integration With LDAP and Active Directory. LDAP and
Active Directory authentication and authorization are facilitated
through the Reporting Server LDAP security provider. WebFOCUS is
configured to authenticate and authorize users to the Reporting
Server.
-
Authentication and Authorization to Data in an RDBMS. WebFOCUS
can authenticate and/or authorize users based on information maintained
in an RDBMS.
-
Developing a Custom Security Provider. Custom authentication
and authorization solutions can be developed using the Reporting
Server custom security provider interface. The custom provider can
access security information from any source accessible to one of
the Reporting Server data adapters.
-
Pre-Authentication Support for OpenID. WebFOCUS can be
configured to authenticate users through an OpenID provider, including
Google Accounts, Yahoo, and AOL. You can also use this feature to
integrate WebFOCUS with an in-house OpenID service to provide users
with a single sign-on experience.
xResource Analyzer and Resource Governor
Resource Analyzer provides Information Systems (IS)
organizations with the ability to manage the growing volume and
unpredictable nature of ad hoc data access.
Resource Governor controls monitoring, system configuration parameters,
and governing rules. It provides preemptive governing for requests
issued to both relational and nonrelational data sources. Together,
Resource Analyzer and its partner product, Resource Governor, are
designed specifically to help IS organizations analyze and control
end user data access.
-
Collecting DEFINE Fields in Resource Analyzer. DEFINE
fields and base Master File fields referenced by a DEFINE are now
collected for monitored sources.
-
Field Size Changed for Governing Field Names. Resource
Governor has been enhanced so that Resource Thresholds, Rule file
sources, and complied rule files names can now be up to 48 bytes
long. The exception to this is the PDS deployed server, where names
can only be eight bytes long due to PDS and PDSE name limitations.
-
Monitor Settings Page in Configuration Process. The
Monitoring Properties page, where the granularity of monitoring
can be set, is now included in the configuration process of Resource
Management. It can still be accessed after configuration has been
complete.
-
SMUSERID Size Increased to 128 Characters. Resource
Management now supports the monitoring of users who have IDs up
to 128 characters long.
-
Support for 512-Character Column Name. Resource
Management now supports the monitoring of column (field) names up
to 512 characters long.
-
Reports Show DBMS Time. A
number of reports have been enhanced with a new data column that
shows the time spent in the adapter used in a request.