Forums

Find answers, ask questions, and connect with our
community all around the world.

Home Forum Ideas Omnis Studio’s security credentials in the Microsoft enterprise world.

  • Omnis Studio’s security credentials in the Microsoft enterprise world.

    Posted by Vik Shah on May 30, 2023 at 11:03 pm
    Vote up
    Up
    2
    ::

    In an all Microsoft enterprise environment, including the back-end MS-SQL server, having the ability to natively use the AD based security groups and controls and devise access and control mechanisms within a desktop or web-app would be critical for Omnis to succeed in the corporate/enterprise world.

    This can be achived by Omnis implementing a native componet that integrates with the underlying OS’s security framework through Windows Integrated Authentication (WIA) or SSO or Kerberos or LDAP or NTLM or…. anything that works using the mechanisms laidout by Microsoft on developing applications using its security framework. Once this component exists in Omnis, its then the matter for us developers to build access controls on our forms and windows, its as simple as that! The security and access to the application, parts of the application and even the data (tables/schemas/etc…) can then be governed by AD security groups.

    This feature must also be implemented for the Omnis JS Client as it would be receiving said credentials through IIS framework.

    Nathanaël replied 9 months, 2 weeks ago 3 Members · 3 Replies
  • 3 Replies
  • Andreas Pfeiffer

    Administrator
    June 8, 2023 at 12:07 pm

    Hi Vik,

    have a look at the new LDAP worker in Omnis Studio 11: https://www.omnis.net/developers/resources/onlinedocs/ExtendingOmnis/07webcomms.html#ldap-worker-object

    Best,

    Andreas

    • Vik Shah

      Member
      June 21, 2023 at 8:28 am

      Thanks Andreas. Had a quick look at this component, it seems that it can be used as an LDAP querying tool and based on how we formulate the LDAP Queries we can sort-of implement an RBAC. This though isn’t quite what I was referring to, IWA or WIA or SSO uses the security principals and AD to authenticate the user. Furthermore this can be accessed via the desktop layer but leaves the IIS or web-based authentication out. I hope this helps explain my point.

  • Nathanaël

    Member
    August 10, 2023 at 3:20 pm

    Yes, possibilité of using of WIA or SSO would be nice.

Log in to reply.