You are viewing limited content. For full access, please sign in.

Question

Question

weblink readonly

WebLink
Updated December 10, 2015
asked on March 13, 2014

Is the below question even possible?

 

User is part of AD groupA that has read/write access as well as AD groupB that is READONLY (for weblink. Have public portal)
If QF session is processed with this user (session is configured to use win auth), message "a read-only session is not authorized to make this operation" is received. If user, via win auth. logs on to LF client, user is unable to create document.
 

This is working as designed due to deny trumps allow I believe.

 

So how are we supposed to setup a user to be both able to use WebLink, and work in QF and/or LF client to store/edit documents ?

0 0

Answer

APPROVED ANSWER
replied on March 13, 2014

Your full named users should still be able to use Weblink for viewing, they just consume their full license rather than a portal license. You would have to remove them from the read-only group. I believe if they are members of both a full and a read-only the read-only trumps.

0 0
replied on March 13, 2014

Yes. Read-only overrides all other permissions.

0 0

Replies

replied on July 4, 2014

We have a similar situation...except the user is in AD group A so that the user can use the client on a 'device' licenced machine (NOT user licence) as it is a 24hr desk with rotating people.  But the user also has duties at another desk that only require Weblink.

 

We do not want (or have enough) licences to give the user a licence as we have about 12 people in a similar situation.

 

Any suggestions?

2 0
replied on October 28, 2015

We're in a similar situation and trying to figure out if things have changed with WebLink 9. In the past we had to put Named Users into a group which allowed them to Manage Trustees so they would bypass the read-only setting and still be able to scan. That clearly could be a security issue and we'd prefer to not do that.

We have many scan stations in our 24/7 operations and they all use Named Devices so we had to change to using LDAP authentication for scanning (groups not marked as read-only) and Windows Auth for WebLink since the majority access without needing to scan/edit. It sure is a painful workaround to manage though.

I wish the read-only product (WebLink) would not care if the read-only checkbox was checked or not. That sure would simplify things for those of us who need to use Windows Auth into WebLink in the above scenario. Glad we're not the only one with the challenges.

0 0
replied on October 28, 2015

Nothing licensing-related changed in WebLink 9.  Decisions about what types of licenses are consumed by incoming connections are made by the Laserfiche Server.

0 0
replied on March 13, 2014

You would need to give this windows user a named user license.

0 0
replied on December 10, 2015 Show version history

Is this still the case?  Does that person have to use a licence?  Again, in our case, the person is using Quickfields on a Device Licenced machine because we run 24/7 and multiple people use that workstation.  But will be using Weblink on other machines.   With the Device Licence allowing the user to access Quickfields, he is not able to access Weblink.

Do you have to have User Licence for this?

 

0 0
replied on December 10, 2015

Yes. Quick Fields needs a read-write license. A read-only user can't use a device read-write license.

0 0
replied on December 10, 2015

So the only group he is in is the Quickfields group on the Device licenced machine, but he cannot access Weblink still.

0 0
replied on December 10, 2015

Thanks

 

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...