B.4 Security Rights Assignments

B.4.1 User-Based Attributes

The directory user objects for people using the SecureLogin requires the following attribute rights against their own objects.

Attribute Name

Entry Rights Required

Protocom-SSO-Auth-Data

Read/Write

Protocom-SSO-Entries

Read/Write

Protocom-SSO-Entries-Checksum

Read/Write

Protocom-SSO-Profile

Read/Write

Protocom-SSO-Security-Prefs

Read/Write

Protocom-SSO-Security-Prefs-Checksum

Read/Write

Protocom-SSO-Connections

Write/Public Read

Protocom-SSO-ConcurrentConnectionLimit

Public Read

Protocom-SSO-ConcurrentConnectionTimeToLive

Public Read

B.4.2 Container-Based Attributes

In addition, users require the following directory attribute rights against all container objects.

Attribute Name

Entry Rights Required

Protocom-SSO-Entries

Read

Protocom-SSO-Entries-Checksum

Read

Protocom-SSO-Profile

Read

Protocom-SSO-Security-Prefs

Read

Protocom-SSO-Security-Prefs-Checksum

Read