Smartstaff, administrator
60
edits
Changes
no edit summary
__TOC__
=Overview=
'''Note: '''You will need to have [[Global User Administrator|System Administrator]] access to both view and run the '''System Security Summary. ''' =Configuration - Essentials====Accessing the System Security Summary===
To access the '''System Security Summary''', follow these steps:
:: [[File:System security summary.png|thumb|none|500px|The System Security Summary hyperlink found under System Log and Summary]]
===Using the System Security Summary Features===The benefit of the '''System Security Summary '''is that you can see in one, organized place where all of your system security measures are, and what is lacking in each of them. In order to improve your system security. simply click the '''URL '''button on the left side of the security item in the '''System Security Summary. ''' * '''Note: '''You only need to fix the items that have a '''Attention Required '''icon under the '''Attention Required '''column. :: [[File:Fixing sys security summary.png|thumb|none|900px|Important details about an Attention Required security setting.]]This section will bring you through a step-by-step example of fixing the security vulnerability of the '''Password Policy '''which has been indicated on the '''System Security Summary.''' 1. First, [[System Security Summary#Accessing the System Security Summary|go to the System Security Summary]]. 2. Find the security item you would like to configure the security settings for from the [[List View Overview|list]]. The item should have a '''red caution '''icon under the '''Attention Required '''column so that you know the security measures need to be changed. You can also look at the level of severity under the '''Severity '''column to gauge how critical the security vulnerability is. * In this example, the feature is '''Password Policy. ''' 3. Read the text inputted into the '''Details '''column, as this will explain what the security vulnerability for the feature is. * In this case, the issue is that "Password Expiration must be greater than 0." 4. Click on the '''arrow icon '''under the '''URL '''column. This will bring you directly to the configuration page of where that security feature is found. * In this case, the '''URL '''function brings us to the [[Password Policy|Password and Activation Policies]] part of the system. 5. Locate the specific setting(s) mentioned in the '''Details '''column and modify that setting to increase the security. :: [[File:System security summary fix.png|thumb|none|700px|Once in the settings of the security feature, locate the specific issue and modify that setting so that the security is no longer vulnerable.]]6. Click '''Save. ''' 7, Returning to the '''System Security Summary, '''that specific security feature should be now marked as '''Safe ('''[[File:Sys security summary approved icon 2019.png]]) under th'''e Attention Required '''column. =System Security Summary - Settings Explained=
When you open the '''System Security Summary''', you will see a page displayed with details similar to those in the image below:
'''[[Usability]] - '''Any security item that is concerned with the usability of the platform; in other words, if this security item will impact the user's experience and interaction with the [[SmartSimple]] [[:Category:Interface|interface]].
'''Security - '''Any security item that falls under the [[Security Matrix]] for {{L1}}, {{L2}} or {{L3}} [[Entity|entities]] in a [[Universal Tracking Application|UTA]].
|-
For example, for the [[Password Policy]] feature, a '''High Severity, Attention Required '''issue might have the details '''Password Expiration must be greater than 0. '''
In other cases, the '''Details '''column for a security item might simply include a list of data relevant to the feature; for example, '''SmartSimple User Accounts '''will include a list of all [[User|user]]'s emails who are in that [[instance]].
|-
|}
=See Also=
* [[Security Settings]]
* [[Security Matrix]]
* [[Role Based Security]]
[[Category:System Management]][[Category:Security]]
