1. Minimum Security Configuration Guide
  2. Minimum Security Configuration Guide
  3. Configure LDAP Authenticator Class.exe Permissions

Configure LDAP Authenticator Class.exe Permissions

You need to grant permissions to the LDAP Authenticator Class.exe file, which is the executable for the Oracle Argus Insight application.

In addition, you need to create a domain user who will have access to the web servers and all network services that will be configured in Oracle Argus Insight. The instructions in this document use an example user, named safety_user. You need to substitute safety_user with the name of the domain user that you create.

Note:

You need to complete the instructions in this section for each web server in your installation.

To configure the permissions for the Oracle Argus Insight application:

  1. Go to the web server.
  2. Click Start, and select Run.
    The Run command dialog box appears.
  3. In the Open field, enter MMC comexp.msc /32, and click OK.
    The Component Services screen appears.
  4. In the left pane, navigate to Console Root > Component Services > Computers > My Computer > DCOM Config.
  5. In the right pane, right-click LDAP Authenticator Class (that is, Oracle Argus Insight application), and select Properties from the menu.
  6. Click the Security tab.
  7. Modify the Launch and Activation Permissions as follows:
    1. Select the Customize option.
    2. Click Edit.
      The Launch and Activation Permission dialog box appears.
    3. To add the domain user who will have launch and activation permissions, click Add.
    4. For the Local Launch option and the Local Activation option, select the Allow check box.
    5. For the Remote Launch option and the Remote Activation option, select the Deny check box.
    6. Click OK.
    7. Click Yes in response to the message about Deny permissions.
  8. Modify the Access Permissions as follows:
    1. Select the Customize option.
    2. Click Edit.
      The Access Permission dialog box appears.
    3. To add the domain user who will have access permissions, click Add.
    4. For the Local Access option, select the Allow check box.
    5. For the Remote Access option, select the Deny check box.
    6. Click OK.
    7. Click Yes in response to the message about Deny permissions.
  9. Modify the Configuration Permissions as follows:

    Note:

    If the Minimum Security user is the Service Accounts user, skip this step.
    1. Select the Customize option.
    2. Click Edit.
      The Change Configuration Permission dialog box appears.
    3. To add the domain user who will have configuration permissions, click Add.
    4. For the Full Control option and the Read option, select the Allow check box.
    5. Click OK.
  10. Click OK to save the changes and close the LDAP Authenticator Class Properties dialog box.

Parent topic: Minimum Security Configuration Guide