Property editor, Permission editor and security zone

Similar Messages

• New role created and Security zone.

  When I create the new role and I need to set the properties for that role. Then after I try to add this role to user and have user test the access.
  Why there are some error happen and I need to go to 'security zone' by follow path from the error, then my new role into security zone, then user can access without any problem.
  Please anyone explain why do we need to add role again in security zone even though we already set the property to that role in 'content administration.' Please let me know the difference. Thank you very much.

  Hi,
    Security Zones are used to prevent unauthorized users from accessing iviews, Portal Components and Portal Services through a direct url used outside of the portal environment. It will be controlled by means of progressive safety levels and permissions, which are assigned by the system administrators to authorized users in the permission editor.
  Regards,
  Saraswathi

• Adobe Muse and Secure Zones

  I have an Adobe muse site that I am trying to add a secure zone too. I have done everything I need to add the secure zone. I even set up the form with a user name and password. My problem is when i take the HTML code for the form and insert it into my adobe muse site and upload the site the form is deleted from the Business Catalyst portal. So the secure zone exists and I am able to log in with a user name and password that was manually entered in the portal. However, if you try to fill out the form on the site after hitting submit you will notice that the form says its not longer valid, I'm guessing because the upload from muse deleted the form from the web forms manager. Any help is appreciated.
  THANKS!
  JD Wardell

  JD, you need to follow these steps to avoid your forms getting deleted when publishing from Muse:
  Create the Web Form in BC
  Add it to a page (any page, even a blank page)
  Submit the form once
  Now if you publish from Muse, your web form won't get deleted anymore.
  If you need any more help, check out the tutorials and widgets on our site aidbc.com

• Restoring Default Permissions - security zones & applications

  Hi - We're running EP 6, SP 15
  I have stupidly clicked the "reset child permissions" button on three top node folders in the System Admin > Permissions editor. Meaning, of course, that the initial login screen was disabled. While I appreciate how stupid this was and that I shouldn't have done it, does anyone know a quick way of restoiring the Applications, Portal Content and Security Zones folders back to the delivered settings? These are the three folders I reset child permissions on while trying to fix something else.(Doh!)
  Chosen method at present is to look at another, untouched portal system,(QAS) use the audit list editor to compare the settings on all objects within these three folders.
  This sounds like a fairly big job! Any pointers gratefully received.
  Thanks very much
  Andy

  Hi Deepak thanks for the swift reply. The help is helpful, but I had already started looking in the help thanks to one of the two (thread ID 140252 - sap help link similar to yours)
  thankfully this lists the default settings on the zones. the fix i have applied is to give the Everyone group pemissions READ and END USER at the folder level - is this what most people do? As I understand it the only problem is that Applications are directly accessible through the URL - Are there other issues I am missing?
  Thanks again (yes I will come back and give points, once finished...!)
  Andy

• Secure Zone Update Detail From

  When I insert an Update User Details from into my webpage I can no longer update/save the page or view he HTML tab
  Any ideas why?

  What a process this has been! Has anyone else found it difficult or is it just me?
  Maybe there is an easier way, I'd love to know if that is the case.
  If anyone is interested this was my experience in updating the Secure Zone Expiry dates for customers.
  Export a report of all members (Select Users and Secure Zones) and filter by Secure Zone.
  Export a report of all customers and make sure to select the field 'Username' (This is not available in the Users and Secure Zone report, how crazy is that!).
  In Excel, merge the 2 reports to get usernnames for the members. Here is a good tutorial on how to do this Vlookup Excel Best - YouTube or Merge two excel files using a common column - Super User
  After merging and cleaning up the data, copy to an import template and save as csv file.
  Make sure that the date format in your Expiry dates are in the correct format ie 20-Feb-2020 (check in a text editor as excel can be tricky).
  Import via advanced contact import and make sure to select the secure zone in checklist below or the date will not change.
  Easy isn't it, ha.
  If Adobe are listening, please add the 'Username' field to the Users and Secure Zone reports, this would save a lot of work.

• Update secure zone expiry dates with an import

  We are trying to update Secure Zone Expiry dates for customers via an import but the problem is when we create a report for Users and Secure Zones there is no field for 'Username' and from what I understand if we leave this blank when importing then the information will be deleted.

  What a process this has been! Has anyone else found it difficult or is it just me?
  Maybe there is an easier way, I'd love to know if that is the case.
  If anyone is interested this was my experience in updating the Secure Zone Expiry dates for customers.
  Export a report of all members (Select Users and Secure Zones) and filter by Secure Zone.
  Export a report of all customers and make sure to select the field 'Username' (This is not available in the Users and Secure Zone report, how crazy is that!).
  In Excel, merge the 2 reports to get usernnames for the members. Here is a good tutorial on how to do this Vlookup Excel Best - YouTube or Merge two excel files using a common column - Super User
  After merging and cleaning up the data, copy to an import template and save as csv file.
  Make sure that the date format in your Expiry dates are in the correct format ie 20-Feb-2020 (check in a text editor as excel can be tricky).
  Import via advanced contact import and make sure to select the secure zone in checklist below or the date will not change.
  Easy isn't it, ha.
  If Adobe are listening, please add the 'Username' field to the Users and Secure Zone reports, this would save a lot of work.

• Logging Changes to Security Zones

  Does any know if changes to security zones are logged in the NW Portal?  If so, do you know where I can find said logs?  Thanks.

  Update to my question above.  I'm interested in finding out if there is a way to turn on permission changes to security zones.  I have pemissions changing on one of my systems and I can't figure out who is doing it.

• "Secure Zone" is coming in Lenovo Vibe Z2 Pro

  In the incoming Lenovo flagship Vibe Z2 Pro(K920), we are introducing a new feature: Secure Zone
  In order to protect sensitive application & data on the phone, users set up all kinds of lock screen. However, once lock screen is set, user must unlock the phone before using everything, including accessing insensitive app&data.
  Open Zone & Secure Zone
  In Vibe Z2 Pro, we have two zones: open zone and secure zone. Every app can be run in open zone while only trusted app will be run in secure zone to protect sensitive application & data for user. User can easily switch between open zone and secure zone by only "one click".  In secure zone, it is safer, freer and easier.
  How to use "Secure Zone"
  Enable "Secure Zone"
  Confiture "Secure Zone"
  Switch Zone
  Enjoy your safer, freer and easier app runtime in our "Secure Zone" for new flagship Lenovo Vibe Z2 Pro.
  Any comment about "Secure Zone" is welcome. Please feel free to contact us.

  Hi
  Did you had this issue from day 1 ?
  Could be a software issue(the OS isn't installed correctly) or may be a hardware issue.
  You should take it to a Lenovo service center for a check-up.Your warranty should cover this.
  Really sorry about this.
  Regards.
  Did someone help you today? Press the star on the left to thank them with a Kudo!
  If you find a post helpful and it answers your question, please mark it as ''ACCEPT AS SOLUTION"! 
  Unsolicited PM's will not be answered! ....Please post your question/s in the appropriate forum board.
  English Community   Deutsche Community   Comunidad en Español   Русскоязычное Сообщество

• GPO Security Zones and Content Ratings "Modify Settings" buttons are disabled

  Task: Trying to modify a GPO so that specific users who logon to Remote Desktop Servers will have a lower Internet security level for Internet Explorer.
  We have two Windows Server 2008 Domain Controllers, when I access the GPO using the Group Policy Management Console and Editor on either of the two Domain Controllers, then navigate to User Configuration > Policies > Windows Settings > Internet Explorer
  Maintenance > Security > Security Zones and Content Ratings, the available "Modify Settings" buttons are both disabled.
  I've read through several forum posts relating to this and the closest solution mentioned was to turn off IE ESC for Administrators on both Domain Controllers. I've done this and it nothing has changed as a result. Is there a way enable the "Modify Settings"
  buttons, or is there another way to achieve the task mentioned at the top of this post?

  Hi,
  We need to import these settings before we modify them.
  To import security zones and privacy settings from our computer using IEM:
  Click
  Import the current security zones and privacy settings 
  To import content ratings from our computer:
  Click
  Import the current Content Ratings settings
  Regarding how to configure Security Zones and Content Ratings, the following article can be referred to for more information.
  Configure Security Zones and Content Ratings
  http://technet.microsoft.com/en-us/library/cc772410.aspx
  Best regards,
  Frank Shen

• Security Zones and portalapp.xml

  On the page http://help.sap.com/saphelp_nw04/helpdata/en/25/85de55a94c4b5fa7a2d74e8ed201b0/content.htm
  it says that the settings (security zone, permission) in the portalapp.xml defines who can access this application.
  Then it says that PRT checks the users iView-permission and then optionally the security zone permission, depending on the setting of the parameter -Dcom.sap.nw.sz=true in the J2EE.
  Question:
  When this parameter is disabled (default), are the security zones just not checked when accessing an application throug an iView or also when they are accessed through direct URL?

  Hi Manuel,
  I just checked it against our SP12 installation, with the same component, which has the same settings as yours:
  > it can be run by any authenticated user
  This at least does not hold for our portal installation. Each access with the given URL, called by an authenticated user which does not have one of the admin roles set within the security zones, ends with:
  Access denied (Object: com.sap.portal.system/security/sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/ClusterAdminConsole)
  The application permissions do not play a role here, these are for the iView wizards, which applications are to be chosen.
  So, double check the user you are testing with; maybe the version is buggy?
  > In the Security-Zone-Permissions
  > ara:/security/sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console
  Under components/ClusterAdminConsole the same settings are to be found? (I expect it, but just to be sure.)
  Hope it helps
  Detlev

• Error in permission editor

  Hello,
  when I open the permission editor of a workset or a role in properties in the Content Administration --> Portal Content I always get the error message:
  Portal Runtime Error
  An exception occurred while processing a request for :
  iView : pcd:portal_content/com.sap.pct/admin.templates/iviews/editors/com.sap.portal.aclEditor
  Component Name : com.sap.portal.admin.acleditor.default
  The log files display the following:
  ERROR: updateParentData - aclHandle is null for objectID - null
  and
  com.sapportals.portal.prt.component.PortalComponentException: Error in service call of Portal Component
  Component : pcd:portal_content/com.sap.pct/admin.templates/iviews/editors/com.sap.portal.aclEditor
  Component class : com.sap.portal.admin.acleditor.ACLEditor
  If I open the permission editor of an iview or a page it works successfully.
  Does anyone has a solution for me?
  Thanks a lot in advance.
  Kind regards,
  Sven

  Did you discover a resolution to this issue?  We are facing the same problem with editing role and workset permissions.
  Thank you!

• We can assign permission to the users in Secure Zone?

  Hi BC Partners
  I have a qestion about Secure Zone
  For Secure Zone users we can assign permission to them, such as assign them upload or edit content in Secure Zone?
  Regard
  TY

  Hey there,
  It does not work like that.
  A seurezone gains access to a zone area, and thus the landing page and content assigned to that zone. Nothing more nothing less. They can not upload or edit content to your site through the securezone. The only thing they can edit and update are their details or if they have submitted web app items and you have allowed them to edit these or submit them.

• When I try to combine two pdf's, it asks for a permission password and says the documents are protected; however, I didn't put any protection/security in the documents.  I assume it is a default security under the enhanced security settings of the Acrobat

  When I try to combine two pdf's, it asks for a permission password and says the documents are protected; however, I didn't put any protection/security in the documents.  I assume it is a default security under the enhanced security settings of the Acrobat Pro XI which I recently purchased.

  Acrobat (Pro or Standard) does not apply a "default" protection. It appears that someone or some other process has applied protection.
  Be well...

• Secure Zone Login Issues:  It worked great and now just stopped.

  The secure zone on my client's site worked great for about a month and now it just stopped.  All of a sudden it won't let us type into the username and password boxes.  We can click on the "remember me" button and the "submit button" but not type.  I've tried deleting and redoing the code and still nothing.  Our issue is occuring most when used with Chrome's browser.  Any thoughts or suggestions?

  Thanks for your reply, Liam.  Oddly enough I was just reading your expectional contributor profile that popped up in my side collumn.
  Here is the link to the site.  The login works fine in Safari, it's just a problem with Chrome I believe.
  www.myadvancedpt.com
  The login area is in the bottom right of the footer titled "Employee Login."

• Single form for secure zone registration and web app submission?

  Hi
  Is it possible to setup a form where a user can simultaneously register for a secure zone and submit a web app entry? The knowledge base / tutorials describe a two step process (web form for secure zone registration and web app input form for web app submission), but I would like users to be able to do both with a single form
  Thanks in advance for any suggestions
  mls

  In order to have a customer create a web app item they must be logged into the secure zone already.  I've seen some instructions on how to let users submit web app items outside a secure zone but that requires creating a dummy anonymous user and logging them into the secure zone via javascript.  You could use this method and once it's submitted you'll have to manually attach the web app item to the correct user in the BC Admin.  That might not work for you but you can read more about that at http://forums.adobe.com/docs/DOC-1784
  You can't use the above solution with the current user's username and password because those tags are only available when the user is logged into a secure zone already.  If your signup form needs to be filled out first, the user isn't logged in.
  Your best bet is to have the public signup form redirect the user after submission to an "Add item" form you have created. Maks sure that form is in a secure zone so when they add the item it is attached to their account.
  If you don't want to redirect them to a secure zone and want it more seamless you could try to use some javascript/ajax to submit the form via javascript and after the form is submitted, use the javascript code in the above to log them in (be careful to use the https://yoursite.worldsecuresystems.com url if you are passing username and password info gathered from your form to log them in via javascript/ajax).  Once they are logged in via the javascript you can use more ajax to fetch a page's HTML that resides in a secure zone.  This HTML returned from the javascript can be your "add web app item" form and since they were logged in via javascript (securely, right?) this HTML should contain the right information.  Insert this returned HTML into your form container that held the original signup form and they can continue to add a web app item without having to log in.
  This is theory and might work but you'll have to start experimenting with it via javascript.  I haven't actually tried to do this so hopefully some other community members who might have tried this can weigh in here as well.
  Good luck!