ISTech Support Forum
http://www.istechforum.com/YaBB.pl
Evo-ERP and DBA Classic >> System Manager >> User Passwords in EVO
http://www.istechforum.com/YaBB.pl?num=1144162431
Message started by geo@jps on 04/04/06 at 06:53:51

Title: User Passwords in EVO
Post by geo@jps on 04/04/06 at 06:53:51
All,

In EVO is it possible to force password changes on users such that the Admin would not be able to login as the user without the users knowledge? (Basically like Windows networking where I can reset a users password, but I don't have any way to find out what it is.)

Thanks,

George

Title: Re: User Passwords in EVO
Post by Lynn Pantic on 04/04/06 at 08:50:39
Not a way to force it but there is a Change Password option.  If they have someplace on the menu access to PASSWORD.INT as a change password program then they will also have File - Change Password as an option.  We will look at adding additional security.

Title: Re: User Passwords in EVO
Post by geo@jps on 04/04/06 at 09:07:31
Lynn,

Two questions:

If they had that access would the user also be able to change someones password also?

Once the users password was changed would the Admin have any way of seeing it?

We're getting caught up in SOX, so we're moving into unexplored territory!

Thanks,

George

Title: Re: User Passwords in EVO
Post by Lynn Pantic on 04/04/06 at 16:08:12
1.  They can only change their own password.
2.  At this time the Admin can still see them all but the SOX world will make us change that I am sure.  

We have a number of users that, like you, are divisions of publicly held corporations and the SOX requirements are becoming a reality so we are continuing to look into ways to become compliant.  The audit trail of transactions was already added and we continue to look for ways to improve.  The reality is, DBA Classic without the Evo menu can not be made compliant because we do not have access to the login process of the menu itself.  Anybody needing to satisfy a SOX audit will need Evo and we recognize there is still more we need to do, but at least in Evo we have the ability to do it.

SOX SUX - Thanks, Enron...

Hmmm...  We have RoHS, SOX, Bioterrorism Act, ISO...  Anything else to throw into the mix?

Suggestions welcome.  Maybe I should start a new section for Regulation Compliance.

ISTech Support Forum » Powered by YaBB 2.1!
YaBB © 2000-2005. All Rights Reserved.