How to restrict non-admin users from login to the Windchill

In Windchill, Admin users and non admin means general users are present.

Admin Users have all permissions, same time normal users have certain defined permissions by Admins.

During Weekend activity or pre-upgrade activity, Admin user has to perform some activity. same time normal users are not allowed to work on Windchill.

Here is the way to restrict the normal users from login to Windchill,

Take back up of app-Windchill-Auth.conf file located at <apache>/conf/extra/app-Windchill-Auth.conf and follow the below steps,
In <apache>/conf/extra/app-Windchill-Auth.conf, replace each “require valid-user” entry with “require user wcadmin” entry, as shown below,

# Authenticated resources

<LocationMatch ^/+Windchill/+(;.*)?>
AuthName "Windchill"
AuthType Basic
AuthBasicProvider Windchill-AdministrativeLdap Windchill-EnterpriseLdap
Require user wcadmin
</LocationMatch>

<LocationMatch ^/+Windchill/+infoengine/+verifyCredentials.html(;.*)?>
AuthName "Windchill"
AuthType Basic
AuthBasicProvider Windchill-AdministrativeLdap Windchill-EnterpriseLdap
Require user wcadmin
</LocationMatch>

<LocationMatch ^/+Windchill/+protocolAuth(;.*)?>
AuthName "Windchill"
AuthType Basic
AuthBasicProvider Windchill-AdministrativeLdap Windchill-EnterpriseLdap
Require user wcadmin
</LocationMatch>

Restart the Apache.

Now onward normal users will not be able to login in Windchill,

To revert back these changes just replace modified file with the backup file

PLM - Windchill

Friday, December 1, 2017

How to restrict non-admin users from login to the Windchill

No comments:

Post a Comment

Windchill with HTTPS

Report Abuse

Labels