Using the Administration Console

The Licenses Menu links you to information about your current product license, an audit of User and Group licenses and roles, and to information about licenses for all third-party software products included in the installation. Using Licenses menu commands you can:

• View the current license number, product edition, license key expiration date, and the number of licensed users. You can also add new license numbers.
• Access license information for third-party software packaged with WebFOCUS Business User Edition.

You can run the User Audit utility (license_audit.bat) from your local WebFOCUS installation directory, which is available in the following location:

drive:\ibi\WebFOCUS_BUE82\WebFOCUS\utilities\mr

When you run this program, it generates the License Analysis report and transfers it to the auditUserCounts.htm file, in the same directory.

The License Analysis report contains the following information:

The Third Party command opens the 3rd Party Information page that displays the following information for each third-party software application used to support different features:

• Description. The name or brief description of the third-party application.
• Version. The version number of the third-party application.
• File(s). The names of all files that comprise the third-party application.
• License. The name of the license that permits the use of the third-party application.
• Third-Party Links. The URL from which the third-party application was obtained.
• Release. The number of the WebFOCUS Release to which the third-party application was first applied. There is one entry for each release in which an updated version of the third-party application was applied.
• Update History. The name and version number of the third-party application jar file. There is one entry for each release in which an updated version of the third-party application jar file was applied.
• Date. The date and time on which the third-party application update was applied in YYYY-MM-DD and HH:MM:SS format. There is one entry for each third-party jar file update.

The WebFOCUS Business User Edition product uses various third-party software applications that support a variety of features.

The Clear Cache command refreshes the state of the application by applying saved changes that are not applied dynamically. Even though some changes are dynamic or only require the administrative user to clear the cache to take effect, others require an administrative user to recycle the web application.

The Close command closes the Administration Console. After the console closes, you remain signed in to your work session.

When you click the Help icon, the online Help file opens to a topic that describes the tab, setting, or feature currently on display.

Internal authentication and authorization are enabled, by default. Optionally, you can use the settings in the Internal page to configure sign in and password policies.

Sign In Settings (Enable Sign In Settings)

Determines the default values assigned to the Sign In Settings on the Internal Security Page.

This check box is cleared (False), by default. Sign In Settings are inactive and unavailable, and display a value of 0.

When this check box is selected (True), Sign In Settings are activated, automatically assigned a set of pre-configured values, and made available for updates. To deactivate an individual setting while this check box is selected, type or select zero (0). When this check box is later cleared, all values assigned to the Sign In Settings return to 0, and the settings are deactivated.

This setting does not affect the value or availability of the Password Expiration Result options.

Maximum Sign-in Attempts (IBI_Max_Bad_Attempts)

Specifies the number of unsuccessful sign-in attempts allowed before the account status is changed to locked. When the Sign In Settings check box is cleared, the default value is 0, which allows unlimited attempts. When the Sign In Settings check box is selected, the default value is 5, and managers can type or select an alternative value. To deactivate this setting when the Sign In Settings check box is selected, type or select 0.

Lockout Duration (Minutes) (IBI_Account_Lockout_Duration)

Specifies the number of minutes before the status of an account changes from locked to active. When the Sign-in Settings check box is cleared, the default value is 0 (off). When the Sign In Settings check box is selected, the default value is 3 minutes, and managers can type or select an alternative value. To deactivate this setting when the Sign In Settings check box is selected, type or select 0.

Lockout Duration Reset (Minutes) (IBI_Account_Lockout_Duration_Reset)

Specifies the number of minutes that must elapse after the number of failed sign-in attempts specified by the Maximum Sign-in Attempts setting before the allowed sign-in attempt counter is reset to 0. The available range is from 1 to 99,999 minutes. When the Sign-in Settings check box is cleared, the default value is 0 (off). When the Sign In Settings check box is selected, the default value is 3 minutes, and managers can type or select an alternative value. To deactivate this setting when the Sign In Settings check box is selected, type or select 0.

Days Until Password Expires (IBI_Password_Expire)

Specifies the number of days that a password will remain active. When Sign-in Settings is cleared, the default value is 0, which prevents passwords from expiring. When Sign In Settings is selected, the default value is 90 days. Once the password has expired, the user must take the action specified by the Password Expiration Result (IBI_Password_Expire_Action) setting, and managers can type or select an alternative value. To deactivate this setting when the Sign In Settings check box is selected, type or select 0.

Days Until Password Expiration Warning (IBI_Password_Expire_Warning)

Specifies the number of days prior to expiration that a warning will be displayed to the user. When Sign-in Settings is cleared, the default value is 0, which provides no warning. When Sign In Settings is selected, the default value is 75 days. This value should be less than or equal to the value assigned to the Days Until Password Expires (IBI_Password_Expire) setting, and managers can type or select an alternative value. To deactivate this setting when the Sign In Settings check box is selected, type or select 0.

Password Expiration Result (IBI_Password_Expire_Action)

Specifies the action required when a password expires. You can choose one of the following options:

• To force Users with Expired passwords to change their passwords before signing in (MUSTCHANGE). This is the default value.
• Change the status of users with expired passwords to inactive. Such users cannot sign in until an administrator resets the password (DISABLE-USER).

Enable Password Complexity (IBI_Password_Complexity)

Determines the default values assigned to the Password Settings on the Internal Security Page.

This check box is cleared (False), by default. All of the Password Settings are inactive and unavailable, and display a value of 0.

When this check box is selected (True), all of the Password Settings are activated and available for updates. WebFOCUS Business User Edition automatically assigns a pre-configured set of values to them.

When this check box is later cleared, all values assigned to the Password Settings return to 0, and the settings are deactivated.

If this check box is selected (True), passwords also must:

• Not contain the user account name or parts of the full name of the user that exceed five consecutive characters.
• Be at least six characters long or at least the number of characters specified in Minimum Password Length, whichever is greater.
• Contain characters from three of the following four categories:
  • Uppercase English characters (A through Z).
  • Lowercase English characters (a through z).
  • Base 10 digits (0 through 9).
  • Non-alphabetic al characters (for example, !, $, #, %).
  • Complexity requirements are enforced when passwords are changed or created.

Minimum Password Length (IBI_Password_Minimum_Length)

Defines the required minimum length of a password. When Enable Password Complexity is cleared, the default value is 0 characters. When the Enable Password Complexity check box is selected, the default value is 6 characters. To deactivate this setting when the Enable Password Complexity check box is selected, type or select 0.

Password Reuse (IBI_Password_Reuse)

Specifies the number of recent passwords that cannot be reused. If Password Reuse is set to 6, for example, WebFOCUS Business User Edition will track the 6 most recent password changes and prevent you from reusing them when creating a new password. When the Enable Password Complexity check box is cleared, the default value is 0 changes, and users can re-use any previously-assigned password. When the Enable Password Complexity check box is selected, the default value is 2 changes. To deactivate this setting when the Enable Password Complexity check box is selected, type or select 0.

Use the External page if you have elected to configure security in a Microsoft Active Directory (AD) or Lightweight Directory Access Protocol (LDAP) directory that is not part of WebFOCUS Business User Edition.

Enable External Security

When you select this check box, internal security settings are overridden. WebFOCUS Business User Edition directs all authentication activities and approvals to the external system you identify on this page.

External Security Type (IBI_Authentication_Type)

The drop-down list box for this field contains the following values:

• Reporting Server. Authenticates users against an AD or LDAP directory.
• Legacy LDAP. This value is not used with WebFOCUS Business User Edition.
• Custom Java Plug-In. This value is not used with WebFOCUS Business User Edition.

On the Redirection Settings page, values in the Redirect and Save Report settings determine whether the output from a request is stored in a temp folder file during processing, and whether a name is to be assigned to that file automatically. The combination of values assigned to these two settings determines the way in which output from requests is to be displayed and saved.

The Redirect setting allows you to specify if the output from a request should be saved to a file in the temp folder located under the WebFOCUS BUE client directory.

• If the value in the Redirect setting is yes, the output is saved to a file in the temp folder, where a name can be assigned to it, as directed by the value assigned to the Save Report setting.
• If the value in the Redirect setting is len, the output is saved to a file in the temp folder only if it exceeds the value assigned to the IBIWF_sendbufsize setting, which, by default, is 16384 bytes. Any output that must be saved to a file in the temp folder is then sent to the browser without an additional HTTP call.
• If the value in the Redirect setting is no, output is processed as directed by the value assigned to the Save Report setting.

  The Save Report setting allows you to specify if report files should be assigned names automatically when they are created.

  • If the value in the Save Report setting is no, the report, chart, or other output opens directly in the Browser or application without prompting users to open or save it. Users still have the option to save the report after it is opened. A randomly-generated name is assigned to the report output file regardless of whether the request originated from the Resources tree, from InfoAssist, or from some other application tool.
  • If the value in the Save Report setting is yes, the report, chart, or other output is saved to a file in the temp folder, as follows:
    • If the report request specifies an output file name, it is assigned to the output file. Then the browser makes an HTTP call to retrieve the temporary stored output file, and prompts the user to open, save, or cancel it. The output file name appends the date and time at which the file was created only if the request also includes a PCHOLD AS statement that captures this information.
    • If the report request does not specify a file name:
      • If you run the request from an item in the Resources tree, the name value of that item is assigned to the request output file, and the date and time that the file was created is automatically added to the file name.

        Note: The name value of an item appears on the Properties panel in the Name field.

      • If you run the request from a tool such as InfoAssist, a randomly-generated name is assigned to the output file, and the date and time that the file was created is automatically added to the file name.

In order to use the Save Report functionality for GRAPH requests that specify a PNG, SVG, GIF, JPEG, or JPG format in the procedure, you must take the following steps:

1. Set Save Report to yes for the .htm extension.

   Running a server-side GRAPH request creates an HTM file that contains a link to the actual graph output, which is stored as a temporary image file with a .jpeg, .jpg, .gif, .svg, or .png extension.

2. When you execute a GRAPH request, if you select the Save option when prompted to open or save the output, the output is saved to an HTM file using only a reference to the graph image, which will eventually expire and be deleted from the server, as determined by the temporary file expiration settings in the Client Configuration.
3. To preserve the output of the GRAPH request, open the saved HTM file, right-click the graph image, and select Save Picture As to save it to disk permanently. You can then substitute an absolute reference to the saved image file in the HTM output file.