Security overview

The Crystal Enterprise architecture addresses the many security concerns that affect today's businesses and organizations. The current release supports features such as distributed security, Single Sign On (SSO), resource access security, granular object rights, and third-party Windows NT and LDAP authentication in order to protect against unauthorized access. To allow for further customization of security, Crystal Enterprise supports dynamically loaded processing extensions. And, for monitoring and auditing purposes, Crystal Enterprise allows you to log various web statistics, thus enabling you to detect potential security concerns.

Because Crystal Enterprise provides the framework for an increasing number of components from the Enterprise family of Crystal products, this section details the security features and related functionality to show how the framework itself enforces and maintains security. As such, this section does not provide explicit procedural details; instead, it focuses on conceptual information and provides links to key procedures.

Click the appropriate link to jump to that section:

• How Crystal Enterprise authenticates and authorizes
• Security management components
• Active trust relationship
• Sessions and session tracking
• Environment protection
• Auditing web activity
• Protection against malicious logon attempts

Related topics

• For key procedures that show how to modify the default accounts, passwords, and other security settings, see Making initial security settings.
• For procedures that show how to set up authentication, users, and groups, see Managing User Accounts and Groups.
• For procedures that show how to set object rights for your Crystal Enterprise content, see Controlling Users' Access to Objects.