How Do I Link A CX-Supervisor User To Windows Security Credentials?
CX-Supervisor has always offered the ability for users to log in and have differing levels of security access to an application.
In some cases especially in the pharmaceutical industry the management of user names and passwords must be strictly controlled especially with things such as password complexity and aging.
Before version 3.1 of CX-Supervisor, all passwords were controlled by the application developer and no rules were in place to ensure unique users within an organisation, to ensure passwords were suitably complex or to ensure that the passwords would expire after a set period. Each organisation has preferences for this some erring on the side of security some on the side of minimal complexity for users. For this reason CX-Supervisor v3.1 now allows users to be added that have the user names and passwords controlled by Windows security. Windows security optionally has rules for password aging and complexity.
This article shows how to add one of these secure Windows originated users to CX-Supervisor.
Adding Windows Users To CX-Supervisor
The configured users dialog is opened by clicking Project -> Runtime Security -> Configured Users:
This will bring up a dialog which allows the entry of users:
A new user is added by clicking the 'Add...' button.
The Full Name can be whatever is required and is used in the $UserName System Point within CX-Supervisor. Type the exact Windows user account name (including domain if required) into the Login Name area e.g. mydomain\username
The Password field is greyed out when the 'Use windows Login Credentials' is selected, no password is entered into developer. The Security level is set as before and is independent from any Windows security levels - e.g. a basic Windows user can have Supervisor privileges and an Admin Windows user can have only Operator privileges if required.
You can now press the Store button to add this user to the application:
The application can add special dialogs and scripts for password entry or use the existing dialogs as required - this functionality continues from previous versions of CX-Supervisor.
Now, when the project is run in CX-Supervisor Runtime v3.1, when the user fsmith wants to log in, they will be asked for a password in the usual way but now CX-Supervisor consults the Windows security system to approve the login.
For information on how to set local policies on password rules such as complexity and aging, please see the following Microsoft help page: