1. Security Administration Guide
  2. Changing the Enterprise Server jde.ini File for Security

Changing the Enterprise Server jde.ini File for Security

Verify that the jde.ini file settings for security on the Enterprise Server are configured properly as described in this section. Use Server Manager to configure these settings which specify the internal security parameters, valid users and passwords, environments, and data sources.

In Server Manager, locate the configuration group settings for the Enterprise Server to verify these settings:

[JDENET_KERNEL_DEF4]
dispatchDLLName=name of host dll
dispatchDLLFunction=JDEK_DispatchSecurity
maxNumberOfProcesses=1
beginningMsgTypeRange=551
endingMsgTypeRange=580
newProcessThresholdRequests=0
[SECURITY]
Security Server=Enterprise Server Name
User=user ID
Password=user password
ServerPswdFile=TRUE/FALSE
DefaultEnvironment=default environment

This table explains the variable values:

Setting

Value

dispatchDLLName

Values for Enterprise Server host platforms are:

  • HP9000, libjdeknet.sl

  • RS/6000, libjdekrnl.so

  • Windows (Intel), jdekrnl.dll

  • Windows (Compaq AlphaServer), jdekrnl.dll

  • iSeries, JDEKRNL

For UNIX platforms, values are case-sensitive.

SecurityServer

The name of the Enterprise Server. This value must be the same for both the workstation and the Enterprise Server for workstations to run batch reports on the Enterprise Server.

User

The ID of a user with access to the F98OWSEC. This is the ID used to connect to the DBMS; therefore, this value must match that of the target DBMS.

Password

The password for the user ID with access to the F98OWSEC. This is the password used to connect to the DBMS; therefore, this value must match that of the target DBMS.

ServerPswdFile

This parameter is valid for servers operating under UNIX operating systems.

The setting of this parameter determines whether the system uses special password handling for batch reports running on the server:

  • Set the value to TRUE to instruct the system to enable special handling of passwords.

  • Set the value to FALSE to disable special handling.

When the system runs a batch report on the server, it runs the report using a string of line commands and parameters that includes the user password. Under UNIX operating systems, it is possible to use the process status command (ps command) to query the status of a job and view the parameters that were used to start the process.

As a security measure, you can enable special handling by the software. When enabled, the software does not include the user password in the parameter list for a batch process. Instead, it includes the name of a file that contains the user password. This file is deleted as soon as the batch report reads the password.

DefaultEnvironment

The name of a valid environment for accessing the security table (for example, PD810).