The Single Sign-on Security application allows Portland Financial to administer and configure
role based security across multiple applications with single sign-on capability.
The application has the following characteristics:
 |
Provides a single sign-on capability for multiple applications |
|
Allows page access and data filtering to be dynamically assigned to multiple Iron Speed Designer applications from a single point. |
|
Provides enhanced login with SMS challenge/response messaging confirmation. |
Configuring roles
Single Sign-on Security allows the system administrator to configure application security for the
entire company. The administrator can view, add, edit and delete application entries that make
use of the dynamic security feature. Once a new application is added to the system, the program will automatically
locate pages used by it and add them to its security store. Other items such as reports can also be secured.
Administrators can create users and assign user roles as they go. When page access is assigned to a
user, the application is automatically updated and does not need to be recompiled.
Single Sign-on Security displays filtered data to each user based on their role. As a result,
data is restricted and retrieved from the database without further coding. Various logging data
is stored when users attempt to login (ie. IP address of user, timestamp, login details, etc.).
Editing Age Access en masse
Administrators can also configure security strength with settings such as the length of passwords, special
characters/numbers in passwords, password encryption, and usual login times during the day and durations, IP restrictions
etc. In addition to the password settings, users logging in under certain conditions are required to enter
a response code sent to their mobile phone. This is implemented as an added security level when users login outside
normal working hours or consecutive multiple attempts after the first time they login that day.
|
