span8
span4
span8
span4
Good afternoon everyone,
I have one question regarding FME Server security.I am using FME Server 2014 with an Oracle database.
Normally when we create a user in FME Server,the user is create in table FME_USERACCOUNT with an encrypted password.
Now I have an issue that one of my web services have to access FME Job so my web services need username / password for basic authentication.
Now I have two options either I store password in some local storage with my web service or my web service access Oracle schema fmeserver and get password for user.If i can have decrypted password,the management will be very simple for me.
Can anyone guide me,may be I am missing some basic point over here.
I don't have AD in my infrastructure.
Can you please guide me ?
Regards
It all depends on the security level that's necessary for your environment.
One solution could be to manually generate a security token with an "indefinite" validity and store the token in your database.The security token should be generated for an "API-only" user with extremely limited rights.
Some arguments for this solution:
Rather than using basic auth,you should look into using a security token for your API access.
Here are a couple of starting points:
https://playground.fmeserver.com/getting-started/authentication/
What are some of the difficulties that you experience with FME Server SSL Configuration?0 Answers
Apache Tomcat RCE Vulnerability - April19 (Windows)1 Answer
Dockerized FME and Oracle Client Installation2 Answers
FME Server Test Plan Template 2018/20190 Answers
Reading ZIP files in FME server from untrusted source that might contain malware/virus1 Answer
© 2019 亚搏在线Safe Software Inc |Legal