cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

We are happy to announce the new Windchill Customization board! Learn more.

Allowing Outside Access Best Practices

keithschm
1-Newbie

Allowing Outside Access Best Practices


Server has a dedicated outside IP to the firewall.


I have audited all user namesand passwords to make sure they are secure and not simple.


I am verifying if the vendor has a static IP then I can limit access based on that.


4 REPLIES 4

Did you look up insecure configuration for apache tomcat circa march 2011?

Principal admin allows change of wcadmin password as does any ldap v3 client that let's you see what is in aphelion or Windchill DS...


Sent from my Verizon Wireless BlackBerry

1. Best by far to integrated with your active directory (requires two lines of code in one Apache file) and therefore have Windchill pull current passwords from the network. Note: This requires a new Site admin, replacing wcadmin.

2. For your outside party, consider isolating their access by Product / Library.
Not applicable
(To:keithschm)

Changing your wcadmin password is very important. But, it may cause you
problems.



Visualization is often setup using the user and authentication from the
adapter is through a plaintext file. Usually this is handled with the file
<windchill>/auth.properties.



See the reference documents as they have sections about securing the various
plain text files.



~Dan


You can set the following property to enable the password change by users themselves.


<property name="wt.org.services.userPasswordChangeEnabled" overridable="true"&lt;br"/> targetFile="codebase/wt.properties"
value="true"/>


After setting this property go to Home-->Utilities-->Profile-->Actions-->Edit Password



DISCLAIMER: Author doesn't responsible for any unforeseen things happened due to implementing the suggested process

Top Tags