IBM FileNet P8, Version 5.2.1            

Configuring security mapping for annotations

Configure annotation security mapping to determine how access permissions are transferred between the systems. Security mapping for IBM® FileNet® Image Services annotations is managed on the FileNet Image Services system.

About this task

Without security mapping, the access permissions (read, write, append/execute) for annotations that are exported to Content Platform Engine or FileNet Image Services are ANYONE/ANYONE/ANYONE regardless of the annotation security. If you do not configure annotation security mapping, any authenticated user can delete replicated annotations. With security mapping, the same access permissions that are in effect on an FileNet Image Services annotation carry over to the Content Platform Engine server.

Tip: The FileNet Image Services group ANYONE corresponds to the Content Platform Engine group #AUTHENTICATED-USERS.

FileNet Image Services users are defined as internal users to FileNet Image Services and are case-sensitive. Content Platform Engine users are Windows users and are not case-sensitive. In FileNet Image Services, the following names are unique: User, USER, and UsEr. However, when FileNet Image Services passes annotations to Content Platform Engine, all three names (User, USER, and UsEr) resolve to a single Windows user that is named User.

Procedure

To configure annotation security mapping:

  1. Map the FileNet Image Services users and groups to Content Platform Engine distinguished names.
  2. Enable annotation security mapping.
  3. Restart FileNet Image Services.
  4. Restart Content Platform Engine.
    Important: Security mapping takes place when the annotations are federated, that is, when the annotations are copied from FileNet Image Services to Content Platform Engine. Enabling annotation security does not affect any annotations that were already federated. Those annotations must be re-exported from FileNet Image Services for annotation security to take effect.


Last updated: October 2015
p8pca008.htm

© Copyright IBM Corporation 2015.