×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Space banner

   

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.
BMC Remedy with Smart IT 1.2 ... Installing Configuring Smart IT after installation

Configuring security options for Smart IT

You can choose to restrict the types of files that users can attach to Smart IT records by setting options in BMC Remedy AR System version 8.1.02 and later. For example, you might want to prohibit users from attaching executable files or scripts to the Activity feed to prevent malicious code from executing when the attachment is opened. When you restrict files, an error message is displayed if users try to attach those file types in the following contexts:

  • Ticket details (for example, adding an attachment to the Description field on incidents, work orders, problem investigations, and known errors)
  • CI (asset) profiles
  • People profiles
  • Activity feed
  • Email
  • Broadcasts
  • Change request documents
  • Knowledge articles

If you have implemented chat, you can also configure Openfire to limit the domains that have access to Smart IT chat data. By default, all domains have access, but BMC recommends that you limit access only to an authorized domain (or domains). 

To restrict attachment file types in Smart IT (BMC Remedy ITSM 8.1.02 and later)

  1. Log in to BMC Remedy ITSM as an administrator.
  2. Open the AR System Administration Console, and select System > General > Server Information.
    The AR System Administration: Server Information form appears.
  3. Click the Attachment Security tab as shown in the following figure:
    AR System Administration: Server Information form — Attachment Security tab 
  4. From the Attachment Criteria list, choose Disallow attachments with following extensions.
  5. In the Comma separated list of limit extensions field, enter a comma separated list of file extensions such as exe,com.
  6. Click Apply.
    Changes take effect the next time the Smart IT cache is cleared (default 30 minutes).

For more information about Attachment Security settings, see "Setting security restrictions on file uploads" in Related topics.

To limit access to Openfire chat data

  1. In the openfire/conf/cross-domain-policy.xml file, change the value of the allow-access-from domain property to allow access from a specific domain (or white listed domains) as shown in the following figure. (The allow-access-from element allows a requesting domain to read data from the target domain.)

  2. (Optional) Add more domains on separate lines; for example:
     

    <allow-access-from domain="domain1.com" to ports="5222,5223,7070,7443" secure="true"/>
<allow-access-from domain="domain2.com" to ports="5222,5223,7070,7443" secure="true"/>
  3. Restart the Openfire service.

Warning

The default value is set to ‘*’ (asterisk), which allows access to data from any domain. BMC recommends that you change the value to allow access only from a specific domain (or domains).  

For more information about Openfire setup, see "Installing Chat on a remote server" in Related topics.

Related topics

Setting security restrictions on file uploads

Installing Chat on a remote server

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

Last modified by Catherine Siderine on Apr 15, 2016

Comments

Log in or register to comment.

Configuring the notification locale for mobile clients
Deploying Smart IT to your users
© Copyright 2015 - 2018 BMC Software, Inc. © Copyright 2015 - 2018 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.