DX NetOps Manager

CA PC Apps and User Authorization 

05-11-2017 11:01 AM

With CA PM 3.1, CA PC apps can make direct request to DA REST webservices.  REST requests to urls like “/pc/da/rest/…” will be forwarded to the Data Aggregator through a proxy capability.

By default, only administrators (UserName=admin) are authorized to perform these requests. Apps that are run by a non-admin users will receive returncode 403/Forbidden.

 

Authorize CA PC users for DA REST requests in Apps

On CA PC server, run the following steps

  • mysql netqosportal
  • insert into general (attribute, value) values ('daProxyValidUsers', 'admin,<user1>,<user2>…');
  • commit;

 

Restrict CA PC App usage

Administrators may want to restrict the usage of some CA PC apps to specific users (by role or name). At present, this should be controlled by the app itself.
For example:

  • the app has context parameters such as UserName or UserRoleName
    url=myApp.htm?...&UserName={UserName}&UserRoleName={UserRoleName}
  • there is code in the app that disables buttons and only proceeds if the criteria are met
  • for example:


However, any user will see the app view if he has access to the parent dashboard or context page tab.

 

Statistics
0 Favorited
2 Views
0 Files
0 Shares
0 Downloads

Tags and Keywords

Comments

10-01-2018 02:09 AM

FYI that Web UI option allows editing, but not creation of daProxyValidUsers attribute

09-24-2018 05:07 PM

This must of been removed in 3.6? :(

09-05-2018 03:21 PM

This can also be achieved using the Web UI

  • you will need an admin level account
  • http://<PC>:<port>/pc/center/admin/debug/attrs
  • find daProxyValidUsers and add users in comma delimited list to the value section.
  • click the update button at the top left of the page to save your changes

01-09-2018 03:47 AM

Query to update the users when you see a duplicate entry error

 

UPDATE `netqosportal`.`general` SET `Value`='admin,user1,user2,user3' WHERE  `Attribute`='daProxyValidUsers';

Related Entries and Links

No Related Resource entered.