Re: [Emerald] To late...

Dale E. Reed Jr. ( (no email) )
Wed, 08 Sep 1999 09:51:28 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Previous message: David Routh: "Re: [Emerald] To late..."
Next message: David Routh: "Re: [Emerald] To late..."
Maybe in reply to: David Routh: "[Emerald] To late..."
Next in thread: Dale E. Reed Jr.: "Re: [Emerald] To late..."

David Routh wrote:
>
> At 09:26 AM 09/08/1999 -0700, you wrote:
> >David,
> >
> >Be sure that the operators you've added are in the EmeraldSecure SQL
> >group and not the Emerald group. I'm sorry I haven't been watching the
> >list lately, so I haven't seen your previous posts, but that's the most
> >common oversight when trying to enforce operator group security.
> >
>
> Yep, had them there... basically what was happening was I'd add an Operator
> and think they couldn't change MBR, etc. only to find out they could delete
> MBR's.

As I mentioned in my other post, the Emerald win32 client doesn't
enforce
object level permissions in Emerald 2.5. The object levels permissions
were more designed for a web interface.

> Along with that I've got Operators stuck in Emerald Security and nowhere in
> SQL EM.

Which is perfectly legal, as in a web user. If the SQL User option is
not
checked for the user, that means they exist in the Operators table, but
are
not an actual DB user.

Dale E. Reed Jr. Emerald and RadiusNT__________________________________________IEA Software, Inc. www.iea-software.com

For more information about this list (including removal) go to:http://www.iea-software.com/support/maillists/liststart

Previous message: David Routh: "Re: [Emerald] To late..."
Next message: David Routh: "Re: [Emerald] To late..."
Maybe in reply to: David Routh: "[Emerald] To late..."
Next in thread: Dale E. Reed Jr.: "Re: [Emerald] To late..."