VERIFIED SOLUTION i
X

AuthDB with Vault 5.3m5

UPDATED: September 7, 2017


Controlling access to databases
For the Windows client, you can set up Windows authentication for databases inside the server initialization file.
Syntax:
[Auth]
required=1
loglevel=2

dllname=secur32.dll
database=1
access=ArchiveAccess
[AuthDB]
dbname1=group1
dbname2=group2,group3
dbname3=group1,group4
Keywords and parameters:
required This determines if users are required to login. Defaults to 0, if non-zero
(required=1), users must log in to access server. This is optional.
loglevel This specifies detail of authentication logging: defaults to 1, 0=none, 1=errors,
2=logins, 3=status, 4=debug. This is optional.
dllname This determines the usage of any other dlls besides the default of “secur32.dll” (use
“security.dll” for NT4). This is optional.
package This allows you to specify which security protocol to use when authenticating users.
Defaults to “NTLM”. This is optional. Note that setting loglevel=4 will list
available packages upon server startup. Also, note that each protocol has its own
properties, some of which may not be compatible with Vault.
database If the value is a non-zero (database=1), an access check per database is performed.
The default is 0. This is optional.
access Define a comma separated list of users/groups to allow access to the server.
Defaults to “EVERYONE”. This is optional.
dbname Define a comma separated list of users/groups to allow access to named database.
Defaults to “SYSTEM”. This is optional
treeAdmin Define a comma separated list of users/groups to allow administrative access to the
server.
NOTE: If the server.ini file doesn’t contain the [Auth] tag, the current user is automatically logged in as
administrator.
The examples below show two separate divisions storing invoices in the Vault, one for residential customers and
one for commercial customers. Two databases are set up, one for each with restricted access. The following is
added to the server.ini:
Example:
[Licence]
server=...
desktop=...
r=...
d=...
[Auth]
required=1
loglevel=2
database=1
access=ArchiveResidential,ArchiveCommercial
treeAdmin=ArchiveCommercial                                   (NOTE THESE GROUPS are comma delimited with no spaces.  If there is a space Vault won't parse it succesfully!)
[AuthDB]
resi=ArchiveResidential
comm=ArchiveCommercial
server.ini example:
[filemap]
cdata=comm
rdata=resi
[shared]
Format=AFP
Documents=journal
Stream=1
LengthDelimited=0
TapeBlockFormat=1
MarginX=0
MarginY=0
PageBreak=0
[comm]
inherit=shared
database=comm
[resi]
inherit=shared
database=resi

Downloads

  • No Downloads