You are viewing limited content. For full access, please sign in.

Question

Question

Laserfiche database account best-practices

Security
Updated July 17, 2017
asked on July 14, 2017

One of my client has a new database administrator and Laserfiche is one of the systems he supports now. 

He would like Laserfiche document and/or guidance in regards to database administration's best practices with focus on security and accountability. 

Specifically, he would like to know how the database account should be setup and with what credential(s) having the least-privilege principles, but necessary to support Laserfiche tasks (AD-authenticated vs. direct database account, which roles and etc.).  This account is to/for the backend database (SQL Server) for a Laserfiche administrator/programmer that authors the workflows.

0 0

Replies

replied on July 14, 2017

Authoring workflows does not require direct access to the databases associated with the Laserfiche repository or Workflow.

If the database activities are used in Workflow (Query Data, Update Data, etc), then a data source be created on the Workflow Server and it can be secured separately based on it will be used for (If only SELECT queries are issued through Workflow, then the user specified in that data source can be a read-only user, etc.). The person designing that workflow still doesn't need rights to the database themselves.

0 0
replied on July 17, 2017

is there any general documentation on database best practices from Laserfiche?

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...