vgnTASDiag page

Marcelo_Rodrigues_Costa

Hello,

If a user discover the url below he will be able to access the TAS diagnostics page and see a lot of sensitive information:

http://cmaqa.prudential.com:25000/vgnTASDiag

Did any of you manage to configure something that would prevent users (other than the vgnadmin, i.e.: first admin user) from accessing this page?

Thanks in advance,

--

Marcelo R.

Pramod_Kumar_Nookala

The DSM/DPM configuration guide recommends to disable TAS if stricter security needs are required:

 

Disabling/Re-Enabling vgnTASDiag

 

Environments with stricter security needs may require that you remove

vgnTASDiag.

■ To disable/re-enable vgnTASDiag:

<![if !supportLists]>·         <![endif]>From a browser, open the Configuration Console and log in as a Vignette

Content administrator.

 

<![if !supportLists]>·         <![endif]>Expand the left pane of the Configuration Console to the Trusted

<![if !supportLists]>o   <![endif]>Authentication Service node:

<![if !supportLists]>o    <![endif]>Vignette Configuration Console→

<![if !supportLists]>o    <![endif]>Subcomponents→

<![if !supportLists]>o    <![endif]>Trusted Authentication Service

 

<![if !supportLists]>·         <![endif]>Click the Trusted Authentication Service node.

 

<![if !supportLists]>·         <![endif]>In the right pane of the Configuration Console, click ENABLE_TASDIAG.

 

<![if !supportLists]>·         <![endif]>In the Config Value box, specify false to disable vgnTASDiag, or

true to re-enable it.

 

<![if !supportLists]>·         <![endif]>Click Save.

 

<![if !supportLists]>·         <![endif]>In the left pane of the Configuration Console, right-click the

<![if !supportLists]>o   <![endif]>Vignette Content (C) node:

<![if !supportLists]>o    <![endif]>Vignette Configuration Console→

<![if !supportLists]>o    <![endif]>Vignette Content (C)

<![if !supportLists]>o   <![endif]>and select Manage Configuration Changes→Commit Changes.

 

<![if !supportLists]>·         <![endif]>Confirm that you want to commit your change by clicking Finish.

 

<![if !supportLists]>·         <![endif]>If the change was committed without errors, note any processes that must

be restarted for the change to take effect, then click OK.

 

<![if !supportLists]>·         <![endif]>Restart any processes as instructed.

 

From: eLink Entry: Discussion Group - Web Experience Management [mailto:v7webcontentmanagement@elinkkc.opentext.com]
Sent: Wednesday, February 29, 2012 12:45 AM
To: eLink Recipient
Subject: vgnTASDiag page

 

vgnTASDiag page

Posted by marcelo.rodrigues@prudential.com (Rodrigues Costa, Marcelo) On 02-28-2012 14:12

 

Hello, If a user discover the url below he will be able to access the TAS diagnostics page and see a lot of sensitive information: http://cmaqa.prudential.com:25000/vgnTASDiag Did any of you manage to configure something that would prevent users (other than the vgnadmin, i.e.: first admin user) from accessing this page? Thanks in advance, -- Marcelo R.

---

[To post a comment, use the normal reply function]
Forum:	Discussion Group - Web Experience Management
Content Server:	Knowledge Center