This section covers the authentication best practices
for WebFOCUS.
xIntegrating Authorization Across WebFOCUS Components
Start with setting up the security framework, integrating
security between WebFOCUS Reporting Server and WebFOCUS Client security
components, including External groups, Application Directories,
and Domain Templates. For purposes of this document, a security
framework is comprised of:
- Security authentication methods for appropriate WebFOCUS components.
- Security authorization policy for appropriate WebFOCUS components.
- Externally mapped WebFOCUS groups.
The following guidelines can be used:
- Use the Domain Templates that are packaged with WebFOCUS
to determine if the security policy created from the execution of
the domain templates meet requirements. In some cases, a custom
Domain Template may be created to tailor to specific needs. In some
cases, if the Domain Templates do not meet requirements, customers
will need to develop their own security policy.
- Use the Access Control Templates feature that is built in to
the WebFOCUS Reporting Server to associate a Domain folder to Application
Directories. This can significantly ease administration and maintenance
by eliminating the need to manually apply access control rules to
Application Directories. The simplest scenario is where there is
a one-to-one mapping between a Domain folder that was created from
running the Domain Templates to an Application Directory. For more
information, see Creating Access Control Templates to Support
Domain-Specific Application Directories at https://techsupport.informationbuilders.com/tech/wbf/v8templates/ac_template_example.pdf
- Configure the WebFOCUS Client and ReportCaster to make a trusted
connection to the WebFOCUS Reporting Server.
- Custom security solutions are sometimes required when the built-in
capabilities of WebFOCUS need to be expanded to meet customer requirements.
In this case, it would be helpful to engage with Information Builders
Professional Services to develop a custom solution.