Configure SecurTrac Database ACL Settings
When SecurTracTM starts up for the first time, SecurTracTM will create two databases, the SecurTracTM Configuration database (SCTCFG.NSF) and the SecurTracTM Log database (SCTLOG.NSF). The SecurTracTM Web Services Database (SCTWsif.NSF) will also be created.
Refer to the document titled "ACL Settings for the SecurTrac databases>> for more information relating to the default ACL settings of these databases.
Configure ACL settings for the SecurTracTM Configuration database (SCTCFG.NSF)
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Editor access.
- Review other existing ACL entries and remove those that are not required.
Note: In some organizations, Notes administrators do not participate in security auditing. The security auditing is sometimes maintained by the Security Officer.
Configure ACL settings for the current SecurTracTM Log database (SCTLOG.NSF)
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Reader access.
- Review other existing ACL entries and remove those that are not required.
Note:
- Normally nobody should have rights to modify the SecurTracTM log database content.
When the SecurTracTM log database grows to a certain size (default is 2GB), SecurTracTM will create a new log database automatically. (Refer to Appendix - Advanced Notes.ini settings for information about changing the database size parameters). A new SecurTracTM log database will be created based on the SecurTracTM log template(sctlog.ntf).
Configure ACL settings for the current SecurTracTM Web Services Database (SCTWsif.NSF)
- This database is required for users to access SecurTrac logs via the SecurTrac Plug-in for Notes Standard Client. Users who will be using the SecurTrac Plug-in should have Reader access to the database.
- Review other existing ACL entries and remove those that are not required.
Configure ACL settings for the current SecurTracTM Mail Policy Log Database (SCTPOLICYLOG.NSF)
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Reader access (view only).
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Editor access (view and release e-mail).
- Review other existing ACL entries and remove those that are not required.
Configure ACL settings for the current SecurTracTM SecurTrac Quarantine Database (SCTQUAR.NSF)
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Reader access.
- Review other existing ACL entries and remove those that are not required.
Configure ACL settings of SecurTracTM Log database template (SCTLOG.NTF)
- Add any additional administrator(s) or security officer(s) to the ACL and grant them Reader access.
- Review other existing ACL entries and remove those that are not required.
Note:
- Normally nobody should have rights to modify the log database template.
- In the SecurTracTM log template database(sctlog.ntf) Please note that the default ACL entries should have a pair of square brackets around them. Those entries will be copied over to the ACL of the newly created SecurTracTM log database.
-------------------------------------------------------------------------------------------------------------------------------------------