x

Start with setting up the security framework, integrating security between WebFOCUS Reporting Server and WebFOCUS Client security components, including External groups, Application Directories, and Domain Templates. For purposes of this document, a security framework is comprised of:

• Security authentication methods for appropriate WebFOCUS components.
• Security authorization policy for appropriate WebFOCUS components.
• Externally mapped WebFOCUS groups.

The following guidelines can be used:

• Use the Domain Templates that are packaged with WebFOCUS to determine if the security policy created from the execution of the domain templates meet requirements. In some cases, a custom Domain Template may be created to tailor to specific needs. In some cases, if the Domain Templates do not meet requirements, customers will need to develop their own security policy.
• Use the Access Control Templates feature that is built in to the WebFOCUS Reporting Server to associate a Domain folder to Application Directories. This can significantly ease administration and maintenance by eliminating the need to manually apply access control rules to Application Directories. The simplest scenario is where there is a one-to-one mapping between a Domain folder that was created from running the Domain Templates to an Application Directory. For more information, see Creating Access Control Templates to Support Domain-Specific Application Directories at https://techsupport.informationbuilders.com/tech/wbf/v8templates/ac_template_example.pdf
• Configure the WebFOCUS Client and ReportCaster to make a trusted connection to the WebFOCUS Reporting Server.
• Custom security solutions are sometimes required when the built-in capabilities of WebFOCUS need to be expanded to meet customer requirements. In this case, it would be helpful to engage with Information Builders Professional Services to develop a custom solution.