Posted by Robert G Laurin on November 30, 2015 at 07:23:59:
In Reply to: Active Directory Services posted by Carl Haaser on November 30, 2015 at 07:09:21:
Sounds like what they are asking, is if Comet uses Windows Users/Password.
I believe it does not since the users are already logged-in Windows. What Comet is now is Code Signed, that somehow tells Windows that it is ok to run this code.
As for the data on the Comet Servers, it is CometServe32 that takes care of everything and it runs as a system service.
I actually not absolutely sure, but I think the users/workstations do not require access to the Comet data folders on the Comet Servers. Everything goes/should go through the CometServe and I would like to think that the CometLib does the same.
I am not sure that AD Authentification would help anything since Comet itself needs access to everything and relies on it's own security (by the dot-ini/dot-cfg and Folder Access).
I found that the best way to protect data is by limiting access in the CFIG. You can use the AD/Windows security to limit access to the Comet Executables and the individual dot-cfg files. Depends how paranoid the Customer/Network Administrator is.
This is how I understand it. Hope it helps.
I used AD Authentification with VPN/Firewalls and some PHP web pages. Can't be too hard for plain AD Authentification, but it becomes a royal pain if file security gets involved...
Each file can be a maximum of 1MB in length Uploaded files will be purged from the server on a regular basis.