Allowing Outside Access Best Practices

Forum|Forum|14 years ago
June 23, 2011
4 replies
1077 views

Server has a dedicated outside IP to the firewall.

I have audited all user namesand passwords to make sure they are secure and not simple.

I am verifying if the vendor has a static IP then I can limit access based on that.

Other

D

ddemay

1-Visitor

Did you look up insecure configuration for apache tomcat circa march 2011?

Principal admin allows change of wcadmin password as does any ldap v3 client that let's you see what is in aphelion or Windchill DS...

Sent from my Verizon Wireless BlackBerry

M

MikeLockwood

22-Sapphire I

1. Best by far to integrated with your active directory (requires two lines of code in one Apache file) and therefore have Windchill pull current passwords from the network. Note: This requires a new Site admin, replacing wcadmin.

2. For your outside party, consider isolating their access by Product / Library.

A

Anonymous

Changing your wcadmin password is very important. But, it may cause you
problems.

Visualization is often setup using the user and authentication from the
adapter is through a plaintext file. Usually this is handled with the file
<windchill>/auth.properties.

See the reference documents as they have sections about securing the various
plain text files.

~Dan

P

ptc-2126057

1-Visitor

You can set the following property to enable the password change by users themselves.

<property name="wt.org.services.userPasswordChangeEnabled" overridable="true"<br"/> targetFile="codebase/wt.properties"
value="true"/>

After setting this property go to Home-->Utilities-->Profile-->Actions-->Edit Password

DISCLAIMER: Author doesn't responsible for any unforeseen things happened due to implementing the suggested process

Sign up

Please use your PTC eSupport account.

Welcome to the PTC Community

Please use your PTC eSupport account.

Scanning file for viruses.

This file cannot be downloaded