Default layers using Windows Roles Authentication

Permanently deleted user

February 03, 2014 11:56

I am using windows authenticated single sign on with Active Directory (AD) Roles.  Is there a way to set th e default for all roles to be denied access to certain layers.

I have a set of layers that will only be accessed by one AD Role. I have about twenty AD roles.

At the moment it seems like the 'default' is to allow access to all layers. This means that I have to deny access to the same layers for about 20 roles, as opposed to allowing acces to the layers for one role. 

 

0

• 

  Ryan Cooney

  February 04, 2014 12:30

  Hi Mark,

  The way to make the default be "Deny" is to deny Everyone access to a parent object, such as a Group Layer or Map Service that contains your layer, and then Allow specific users/roles access to the child layer.

  --Ryan

  0
• 

  Permanently deleted user

  February 05, 2014 07:16

  Thanks Ryan.

  Adding a role called  'Everyone' has done the trick. For my own documentation where does 'Everyone' come from? Is this a keyword that geocortex looks for?

  0
• 

  Ryan Cooney

  February 05, 2014 07:23

  Hi Mark,

  "Everyone" is built in role provided by Windows.

  --Ryan

  0

Please sign in to leave a comment.