2. Objectives
• By the end of this lesson you will be able to perform Necto Access
Security setups
• Necto security
• Windows security
• Mixed security
• No Security
7. Necto Security Administration # 2
Default is to inherit
permissions from
Administration
Changes to Authentication
Type here will only be
relevant when using
component mode.
9. Necto from the World Wide Web
• You can allow people from the internet to access Necto
• Necto in your DMZ
• Necto site requires an IP address the world can access
• Necto will use Anonymous Access in IIS
• Get a Full DMZ setup document from our support site
http://support.panorama.com
10. Anonymous Authentication
Set the 3 highlighted items to use
Anonymous authentication
Make sure Authentication Type is set
to Necto in Administration before
doing this!
11. Summary
• In this lesson you have learned to Setup the Authentication types:
• Windows
• Necto
• Mixed
• Allow users from outside the domain to access Necto.
Authentication type – how are users authenticated
Windows – Necto supports integration with Active Directory users and Windows Integrated Authentication. This means that users already authenticated to a domain will have transparent access to dashboard pages, and will not be asked for user name and password.
Necto – Users can also be created in the Necto administration interface. These application users, in contrast to AD users, will be redirected to a login page when accessing the dashboard, where he or she will have to provide user name and password.
Mixed – if a Windows user is not identified by Necto, user is prompted to enter the username and password.
Security Mode – How data is filtered for users (will be expanded upon in the Data Security module)
No Security –Necto users will not be restricted on the data that they see
OLAP – Windows users will have restrictions placed on their data viewing capabilities based on the roles that they are in on the OLAP cubes
Necto – Windows users and Necto users will have restrictions placed on their data viewing capabilities based on definitions within Necto
Authentication type – Changes made are only relevant if the user opens Necto in Component mode.
Necto’s component mode supports components of the following types:
View (or grid)
Workboard – shows a single Workboard
Folder – shows a single Workboards folder
Dashboard – full Necto application
and can be accessed via URL or HTM page where every Necto component is defined by BeginNovaView() / EndNovaView() functions pair, and one or several AttachParameter() function calls between them.
NOTE: Applications settings do override settings in the Administration area (if using component mode) so even if you set Necto security in Administration but here you choose Windows, then Windows is the default security for Necto in component mode.
The DMZ setup can be requested from the Panorama Customer Success team
Anonymous Authentication – Once this is set the Authentication type must be set to Necto, this is because IIS has no way to prioritize Authentication (IIS 7.5 and lower) so even if Windows Authentication is enabled it is effectively ignored once Anonymous Authentication is enabled.