NetResults ProblemTracker
Web Server Security Overview

If you do not wish to configure web server security (perhaps your web server is on an internal machine behind a "firewall"), you have completed ProblemTracker installation and configuration. You can now login to ProblemTracker or proceed to the ProblemTracker tutorial.

ProblemTracker Security

ProblemTracker supports security at two levels. The product includes a flexible user group based security scheme, allowing control of access to both function (Add, Edit, View, etc.) and data records. In addition, ProblemTracker also supports the use of your web server's native security mechanism to limit access to the web pages themselves. If you have very strict security requirements, you may wish to apply web server security to your ProblemTracker installation.

Web Server Security

Many web servers allow you to restrict access to a web site on a per user basis via a process called basic authentication. ProblemTracker has been designed with this in mind, allowing you to limit access to any function by using the web server's built-in security mechanism.

ProblemTracker Organization

The ProblemTracker web pages are organized by function as shown in the following table. In general all pages related to a particular function have been included in the same directory, using a common program file. By applying security to these directories and program files as desired, you can limit each individual or group in your organization to the functions appropriate to their job. When a user browser to a page or program where security has been applied, a dialog appears in their browser requiring them to enter a username and password. Depending upon their identity, they will be allowed or denied access to the resource.

Note that the following table assumes that the software development workgroup (ptdev) of ProblemTracker has been installed. For the web site development workgroup, substitute "ptweb" where "ptdev" appears. rootDir is the web server root directory where the ProblemTracker content and program files were installed (for example C:\Inetpub\wwwroot or C:\Netscape\SuiteSpot\Docs).

Function Directory
Administrative Functions rootDir/ptdev/Admin
rootDir/ptcgi/pt_admin.exe
Normal Internal User Operations rootDir/ptdev/Intranet
rootDir/ptcgi/pt_add.exe
rootDir/ptcgi/pt_base.exe
rootDir/ptcgi/pt_delete.exe
rootDir/ptcgi/pt_edit.exe
rootDir/ptcgi/pt_report.exe
rootDir/ptcgi/pt_task.exe
rootDir/ptcgi/pt_view.exe
External User Operations rootDir/ptdev/Internet
rootDir/ptcgi/pt_inet.exe
Add Record rootDir/ptdev/Intranet/Add
rootDir/ptcgi/pt_add.exe
Edit Record rootDir/ptdev/Intranet/Edit
rootDir/ptcgi/pt_edit.exe
View Record rootDir/ptdev/Intranet/View
rootDir/ptcgi/pt_view.exe
Advance Record State rootDir/ptdev/Intranet/Task
rootDir/ptcgi/pt_task.exe
Delete Record rootDir/ptdev/Intranet/Delete
rootDir/ptcgi/pt_delete.exe
Generate Report rootDir/ptdev/Intranet/Report
rootDir/ptcgi/pt_report.exe
Documentation rootDir/ptdev/Help
Admin Documentation rootDir/ptdev/Help/admin
User Documentation rootDir/ptdev/Help/std

Setting Web Server Security

The procedure for configuring web server security varies for each web server product. This document provides general instructions for setting up security as it relates to ProblemTracker for the following web servers. However, you should also consult the documentation provided with your web server for details regarding its security options.