JDE.INI File (Enterprise Server) Security
Caution: Implementing JDE.INI
file security will prevent Server Manager from modifying configuration
settings.
You must keep the JDE.INI file on the Windows enterprise server as secure as possible. This file contains a database user name and password that enables JD Edwards EnterpriseOne security to function. This database account is given read authority to the OneWorld Security table (F98OWSEC), which controls JD Edwards EnterpriseOne access.
Note: The F98OWSEC table contains
privileged database user names and passwords, which could give a user the ability to
manipulate any data in the database, regardless of its sensitivity or security.
Therefore, access to the enterprise server JDE.INI file should be
minimized.Denying written access to JD Edwards EnterpriseOne is not
necessary, but prevents accidental modification of JDE.INI settings that could
adversely affect the operation of JD Edwards EnterpriseOne.Because of the
importance of limiting access to the JDE.INI file for security reasons, you also
should limit access to the JD Edwards EnterpriseOne account (or the user account
that starts and stops JD Edwards EnterpriseOne). Users with access to this account
can easily obtain the F98OWSEC user names and passwords, and gain privileged access
to the database.