In this section: |
This section provides a brief overview of default WebFOCUS security and authentication issues. These defaults can be changed using security exits and other features. In addition, your enterprise may require additional security and authentication for the web server, mail server, data sources, or other third-party components. For a complete discussion of WebFOCUS security, see the WebFOCUS Security and Administration manual.
By default, WebFOCUS uses two completely independent user ID types, although it is possible to synchronize them:
All requests processed by the WebFOCUS Client require a user ID. For information on WebFOCUS security authentication and authorization, see the WebFOCUS Security and Administration manual.
The WebFOCUS Reporting Server has both user IDs to run reports and procedures (Execution IDs) and user IDs to administer and start the server (Administrator IDs). In addition, the WebFOCUS Reporting Server can run with different security providers.
A user has the same ID for Managed Reporting and ReportCaster. This ID determines which features, reports, and data are accessible through these products. By default, these IDs are created and maintained by a WebFOCUS administrator using the WebFOCUS Security Center.
When WebFOCUS is first installed, the default WebFOCUS administrator ID and password are both admin. After completely installing WebFOCUS and ReportCaster, an administrator should sign in as admin, update the password for the admin account, and create accounts for other users.
For information on integration with basic web server authentication or WebFOCUS Reporting Server security, see the WebFOCUS Security and Administration manual.
Necessary IDs for the WebFOCUS Reporting Server depend on which security provider the server uses. Each time you start the WebFOCUS Reporting Server, you can specify a security provider that determines how authentication occurs when running reports and accessing the Web Console. The Web Console is a web-based tool for configuring and administering the WebFOCUS Reporting Server.
For more information, see the Server Installation manual.
You can run the server with:
The following are the most common security providers, which are set through the Web Console:
/install_directory/ibi/profiles/admin.cfg
Users are authenticated only when accessing the Web Console to configure the server. Authentication is not required to run reports.
Security providers DBMS and LDAP are other options. For more information, see the Server Administration manual.
Regardless of security provider, there is a distinction between WebFOCUS Client execution IDs and server administrator IDs.
With security provider OPSYS, when you run a report in a WebFOCUS application, the WebFOCUS Client must pass an execution ID to the server. End users can be prompted to provide this execution ID, or the WebFOCUS Client can automatically send a predetermined execution ID. For more information on configuring how the WebFOCUS Client provides execution IDs to the server, see WebFOCUS Post-Installation Tasks.
/install_directory/ibi/profiles/admin.cfg
These server administrator user IDs and passwords are needed for the following:
Note: To access data sources needed for reports, the type of authentication is determined by how you configure the adapter for the data source, as explain in the Server Administration manual.
WebFOCUS |