Security Admin Guide Change Summary
Introduction to Security
Overview
User and Role-Based Security Model
System Security
System Security Features
Progress OpenEdge Security Configuration
Internal Controls
Implementation Summary
Establishing a Security Plan
Implementing Your Security Plan
Security Planning Checklists
Security and Internal Controls Programs
Security Overview
Role-Based Access Security
Roles
Role Permissions
Role Membership
Additional Types of Security
Password Management
Sign-in Security
Workspace Security
Sign In and Security Control
OS-Based Sign-in Security
Operating System and Progress Security
Progress Editor Access
Progress-Level Database Schema Controls
Compiling Custom Code on Unprotected Databases
Client-Level Security
Windows Systems
Non-Windows Systems
QAD .NET UI Security
Security Control
Define General Security Settings
Create a Password Strategy
Set Up E-mail Notifications
Monitor System Security
Authentication
Overview
User Authentication
LDAP Authentication
Internal
Directory Services Markup Language Service
Configure Java Keystore
Install DSML Gateway
Review and Update Directory to QAD Database Mappings
Download QAD .NET UI
Configure SYNC reason code
Configure Alternate Country Code
Configure LDAP Instance
Verify LDAP Instance Definition for DSML Gateway Using User Sync
Test LDAP
API Authentication
Users and Roles
Overview
Role and User Definition Process Workflow
Set Up Users
User Synchronization
Types of Users
Define Users
Specify Access to Domains and Entities
Set Up Roles
Uses of Roles
Define Roles
Define Role Permissions
Define Role Membership
View Access Information
Export and Import Roles and Permissions
Channel Islands UI Security
Overview
Prerequisites
User and Role Workflow in Channel Islands
Resources
Channel Islands Resources
Users and Roles
Default Roles
Menus
Role Menu
Favorites Menu
Role Permissions
Permissions Inheritance and Configuration
Resource Dependencies
Role Permissions Actions
Assigning Permissions to Roles
Role Menu Dependency
User Access
Set System Access
Assign Roles
Configure Stored Views Access
QAD .NET UI Security
SSH on the QAD .NET UI
Public Key Authentication for SSH
SSH for QAD .NET UI Terminal Mode
SSL on QAD .NET UI Tomcat Home Server
HTTPS for QAD .NET UI Desktop Screen Display
HTTPS for AIA
Additional Security for Standard Programs
Specifying User IDs and Roles
Limiting Access to Fields
Controlling Inventory Updates
Defining GL Account Security
Defining Inventory Movement Code Security
Segregation of Duties
Overview
Segregation of Duties Verification
Segregation of Duties Compatibility Matrix
Segregation of Duties Policy Exceptions
Segregation of Duties Process Workflow
Plan a Segregation of Duties System
Segregation of Duties Rule Checking
Role Permissions Validation
Role Membership Validation
Direct and Indirect Violations
Segregation of Duties Rule Matrix
Complete Prerequisite Activity
Disable the Superuser Role
Activate Segregation of Duties
Activate Segregation of Duties from the Command Line
Maintain Segregation of Duties Categories
Delete Categories
SOD Category Excel Integration
Assign Resources to Segregation of Duties Categories
SOD Category Membership Excel Integration
Maintain the Segregation of Duties Matrix
SOD Matrix Excel Integration
Define Role Permissions
Define Role Membership
Maintain Segregation of Duties Policy Exceptions
Delete Policy Exceptions
Segregation of Duties Role Exclusions
Import and Export Segregation of Duties Data
SOD Category Worksheet
SOD Matrix Worksheet
Resource Worksheet
Role Worksheet
Export to Excel
Import from Excel
Export to XML
Import from XML
Report and View Logs and Violations
View Log History
Report on Current Segregation of Duties Conflicts
View Role Permissions Violations
Archive Log Record Files
E-signatures
Overview
E-signature Enabled Programs
Programs for E-Signature Setup and Reporting
E-Signature Planning Steps
E-Signature Workflow
Set Up E-Signature Functionality
Load E-signature Initial Data
Set Up E-signature Reason Codes
Define Security Control Settings
E-Signature Categories
Category Considerations
Tables and Fields
Filters
E-Signature Profiles
Overview
Define E-Signature Profiles
Create Signature Groups
Refresh Signature Profiles
Update Signature Profiles
Activate E-signature Profiles
Record E-Signatures
Transaction Scoping
Product Change Control
E-Mail Notifications
Signature Profile Activation E-Mail
Signature Failure E-Mail
Reporting
Setup Reports
E-signature Records for Quality Control
E-signature Reports
Functional Reports and Inquiries
Archive and Restore Records
Auditing
Overview
Plan Auditing
Determine Databases to Audit
Determine Tables to Audit
Archive Database Considerations
Auditing Custom Table Considerations
Set Up Auditing
Enable Auditing for the Database
Configure Database Options and Audit Permissions
Import Audit Policy
Enable Auditing on Selected Tables
Enable Auditing on Selected Fields
Generate Reports for Audit Configuration
Archive Database
Manage the Archive Database Server
Database Connection Report
Execute Archive/Load Scripts
Generate Audit Trail Reports
Generate Reports Against Application Databases
Generate Reports from Archive Databases
Export Audit Policy
Disable Auditing
Reverse Proxy for Channel Islands
Overview
Configuration
Proxy Configuration
URL Rewriting
Configuring Caching of Java Objects
Disk Store Configuration
Refresh Ahead Caching
Product Information Resources
Security Admin Guide Change Summary
Product Information Resources
IntroductiontoSecurityandControls
SecurityOverview
SettingUpSecurityControl
SettingUpUsersandRoles
SettingUpUsers
DefiningUsers
UserDomainEntityAccess
SettingUpRoles
RoleCreate
RolePermissions
RoleMembership
RoleExportImport
urn:view:maint:com.qad.qracore.menus
urn:view:maint:com.qad.qracore.rolePermissions
urn:view:maint:com.qad.qracore.userAccessLists
ControllingInventoryUpdates
DefiningInventoryMovementCodeSecurity
UsingESignatures