WebFOCUS Client Repository and Authorization Security Enhancements

In this section:

This section describes the enhancements to the WebFOCUS Client Repository and authorization security.


Top of page

x
SAML for Single Sign On Support

WebFOCUS offers single sign on support for SAML 2.0. For more information about configuring SAML with CA SiteMinder or CA CloudMinder, see:



x
Centralized Validation of Product Variables

WebFOCUS provides enhanced protection against SQL injection and cross-site scripting attacks by using a centralized filter to validate all product variables by URI. When a request fails the validation test, the request is not validated and a generic error message is displayed to the user. Blocked requests are logged for administrator review and violations are aggregated into a list that can be used to develop new filters.


Top of page

x
Parameter Prompting Behavior

New setting to specify default parameter prompting behavior for Managed Reporting procedures when the Prompt for Parameters setting is unchecked and Managed Reporting Prompting is enabled by IBIMR_prompting.

IBIMR_promptingUnset

Enables or disables parameter prompting for Managed Reporting procedures (FEXes) when IBIMR_prompting is set to XMLPROMPT or XMLRUN, and the Prompt for Parameters setting is unchecked in the FEX Properties dialog box. Possible values are:

  • XMLRUN. Prompts for parameters (amper variables) that do not have a value. This is the default value.
  • OFF. Turns off parameter prompting.

Setting IBIMR_promptingUnset to OFF specifies not to prompt for parameters, enabling the configuration of the default behavior prior to Release 8.0 Version 07.


Top of page

x
Confirmation Message When Moving Folders

You can set the IBI_Move_Confirmation_Message parameter to specify whether WebFOCUS will request confirmation when a user moves a folder using a drag-and-drop operation. The default value is False.

For more information, see the WebFOCUS Security and Administration manual.


Top of page

x
IBI_XFrameOptions Setting

The IBI_XFrameOptions setting in the Filters category of the Administration Console prevents your content from being embedded in other sites, as a security measure against clickjacking attacks.


Top of page

x
IBI_Message_Detail Setting

The IBI_Message_Detail setting in the Security category of the Administration Console determines when users receive detailed or simplified error messages. The detailed message appears in the event.log for administrator troubleshooting.


Top of page

x
Updating Application Settings on the Command Line

You can update any WebFOCUS Application Setting with the updateWebconfig.bat utility (for Windows) or the updateWebconfig.sh utility (for UNIX). These command line utilities modify the ibi\WebFOCUS81\config\webconfig.xml file and automatically encrypt any passwords you update.


WebFOCUS