Space banner

   

This space provides the same content as before, but the organization of the home page has changed. The content is now organized based on logical branches instead of legacy book titles. We hope that the new structure will help you quickly find the content that you need.

How windows-mode security works

Like any security interface, MainView windows-mode security does not actually protect resources itself.

Instead, the interface identifies MainView resources to your ESM and asks if a user is authorized to access the resource, as described here:

  1. MainView resources are identified to the ESM by using a class name and entity names.

  2. When a user requests access to a protected resource, the MainView product passes the resource class name and entity name to the MainView security interface.

  3. The MainView security interface passes the resource class name and entity name to the System Authorization Facility (SAF).

  4. SAF passes the request to the ESM and, in effect, asks the ESM 'Can this user access this resource under these circumstances?'

  5. The ESM checks the user ID against the existing permit, profile, or rule (depending on the ESM) that protects the resource.

  6. The ESM responds to the question with yes, no, or maybe, and then relays that response through SAF to the MainView security interface.

  7. The MainView security interface relays the ESM response (permitting or denying user access to the resource) to the MainView product.

Was this page helpful? Yes No Submitting... Thank you

Comments