1
Download openFT V11.0 for Windows Systems
Transcript
Central administration Remote administration Defining an access list An access list starts with the XML tag <AccessList>. There is no limit to the maximum number of access lists in the configuration file. The access list can be defined at different places in the file. See page 114. And access list has the following attribute: ● Optional attribute InheritFromParent. The value of the attribute InheritFromParent can accept the string "No". If "No" is specified, inheritance of access lists from parent groups is deactivated. Because access lists are inherited from parent groups by default, it is only necessary to specify the attribute InheritFromParent if inheritance is to be explicitly deactivated. An access list can contain the following element: ● one or more access entries with the XML tag <AccessEntry>. Any number of access entries is permitted. An access entry allows you to explicitly define the access permissions for each remote administrator. This means that you can specify which remote administration functions are granted or denied to this remote administrator. Note that parent access permissions are inherited unless you have deactivated this by specifying InheritFromParent="No". Defining an access entry An access entry is an element of an access list and starts with the XML tag <AccessEntry>. There is no limit to the maximum number of access entries in the configuration file. An access entry is made up of the following attributes: ● Mandatory attribute AdministratorID. The value of the attribute AdministratorID is a string that specifies the name of the remote administrator. This remote administrator must be defined at the start of the configuration file using the tag <AdministratorID>. See page 107. A remote administrator may only be specified in one access entry in an access list. ● AllowFunction and DenyFunction attributes. These attributes specify which remote administration functions are granted (AllowFunction) and denied (DenyFunction). The AllowFunction and DenyFunction attributes are in principle optional, but you must specify at least one of the two attributes in every access entry. openFT (Windows) - Administration 115
