The management of access rights to services and data is increasingly becoming a key requirement, both in service-based spatial data infrastructures as well as company-wide enterprise solutions. con terra GmbH has developed sdi.suite securityManager specifically for these tasks. It limits access to authorized users, filters content according to individual access rights and provides extensive functionality to implement a fine-grained authorization concept.
In the new 3.2 version, the interplay of securityManager with ArcGIS Server has been optimised. It is now possible to browse the ArcGIS Server catalog of folders and services, just as with the default ArcGIS Server REST interface, but in a secure manner, ensuring only those folders, services and even layers available to the browsing user’s role are displayed. All supported requests may be sent to this secure endpoint, and it is now possible to visualise these services in the ArcGIS Server or ArcGIS Online Viewer (www.arcgis.com). Of course, in this context only content will be displayed for which the user is authorized. In this way, authorised persons may access a securityManager-secured ArcGIS Server easily and conveniently. Furthermore, the new version allows the simultaneous use of multiple user management systems. This allows an organization to use internal users from an existing LDAP or Active Directory in addition to external users, which are maintained in a database. This ensures there is no need to mix two disparate groups of users, thereby easing the management of
such systems.
Particular emphasis has been placed on an even greater security of SecurityManager against Internet-based attacks. Many of the security features are now individually configurable and provide flexible protection against, for example, brute-force attacks, allowing the definition of password policies, or prevention of cross-site scripting attacks. For more information, visit: http://www.conterra.de/index_en.asp
