multiple user

Author Subject: multiple user
Xone Posted At 14:59:24 05/14/2003
Hi,

It said in the manual that Librarian supports multi-user. How can one use it in multi-user environment?

My case is this: I have multiple developers which can be designated to any available workstation. This means any developer must have access to the library using any workstation.

I have yet to locate any user login functionality in LibraryCard/Publisher. Do I have to install multiple instance of LibraryCard/Publisher with each imported different certificates?

I also notice that are groups field in the user admin dialog of Library Server. How can I utilize this?

TIA
PS: FYI the platform is Win2k Sp3
Librarian Support Re: multiple user (Currently 0 replies)
Posted At 08:36:08 05/15/2003

LibraryCard and LibraryCardPublisher clients basically tie your Windows system login to a certificate on a given workstation. This allows each user of a given workstation to have independent access to the Library or libraries. When they startup LibraryCard/Publisher their Windows login details are used to find the correct certificate on the workstation and this is then used to log them on to the Library. So, one installation of LibraryCard/Publisher can support multiple users on a given machine. All communications between LibraryCard/Publisher and the Library are then encrypted using a key that is unique to the certificate. This provides a good level of security for Internet users.

The down side of all of this is that if a given user wants to access the library through a different workstation then they have to have a separate certificate for that workstation. This means that you have to employ multiple accounts on LibrarySvr for a single individual, one for each workstation through which they will access the Library.

Groups have not been implemented yet. I don't have a date for when they will be available.

Xeon Re: multiple user (Currently 0 replies)
Posted At 14:13:17 05/17/2003

Ok, what system login details which card/publisher will refer to when searching for 'appropriate' certificate? Does this means that I have to reflect the sytem login id and password (or any other infos) to card/publisher certificate?

Each workstation needs certificate which uniquely correspond to that workstation. So, how do I generate such certificate? AFAIK the user admin dialog notes that user machine details are not implemented (in v1.4).
Librarian Support Re: multiple user (Currently 0 replies)
Posted At 08:44:27 05/19/2003

The username and password that you choose when creating an account on LibrarySvr does not have to bear any connection to a given users system login name and password. The association is made between the username and password in a certificate and the system login name at the time of importing the certificate into LibraryCard/Publisher.

Each user of the library needs a certificate that is unique to them. A certificate can only be imported once. By implication, the certificate becomes unique to the user on the workstation on which it was imported. The reason for all of this is that LibrarySvr checks the users encryption key each time they visit the library. If their key is invalid then LibrarySvr locks them out. If the key is valid LibrarySvr generates a new unique encryption key for the user. The new key is received by LibraryCard/Publisher and stored locally on the workstation with the rest of the users certificate details. This security mechanism means that a single user cannot use the same certificate from multiple workstations because their keys would immediately be out of sync. When you combine this with the fact that LibrarySvr only allows one active certificate per user account you find that a user must have a separate user account on LibrarySvr for each workstation from which (s)he will access the library.

Hope this helps.

Post Reply:
Name:
E-Mail:
Subject:
Message: