It's all about the answers!

Ask a question

Archived Users - Should they still have access to log in?


Shelby Phillips (29614621) | asked Oct 07 '09, 2:31 p.m.
We are running the RTC 2.0 Standard Server on a Windows 2003 Server environment using LDAP configuration,and have noticed that "archived" users still have the ability to login to the server.

Should archived users still be able to perform this action? What is the intention of archiving users if so?


Shelby

7 answers



permanent link
Balaji Krish (1.8k12) | answered Oct 07 '09, 3:48 p.m.
JAZZ DEVELOPER
You also need to remove the user from all the groups in LDAP or whatever user registry you are using.

Is the archive user a "JazzAdmin" i.e. user is in "JazzAdmins" groups in LDAP ? We allow users with Admin authority to browse and perform operations even if their user id is not present (or user id is archived)

--- Balaji



We are running the RTC 2.0 Standard Server on a Windows 2003 Server environment using LDAP configuration,and have noticed that "archived" users still have the ability to login to the server.

Should archived users still be able to perform this action? What is the intention of archiving users if so?


Shelby

permanent link
Yanzhuang Li (31114126) | answered Oct 07 '09, 5:40 p.m.
Thanks, Balajik.

In the testing environment (brand new RTC2.0) that Shelby mentioned above, my ID was archived. When I tried to logon to jazz/web from IE or FF, I only see "loading..." and nothing happens.

In another RTC2.0 environnent that was migrated from RTC1.0, I see something totally different. I made sure that my ID was removed from all four users groups, all licenses were removed, and my ID is not in user list of any project area. However, I'm still able to logon to Jazz/Web in this case.

Any further comments please? Thanks.

permanent link
Balaji Krish (1.8k12) | answered Oct 08 '09, 9:53 a.m.
JAZZ DEVELOPER
"Loading"... -> I think we fixed this issue in 2.0.0.1. It should display that your user does not have access to the requested resource.

I am not sure about your second RTC server. Please double check your LDAP configuration. You should not be allowed to login to the RTC repository.

--- Balaji


Thanks, Balajik.

In the testing environment (brand new RTC2.0) that Shelby mentioned above, my ID was archived. When I tried to logon to jazz/web from IE or FF, I only see "loading..." and nothing happens.

In another RTC2.0 environnent that was migrated from RTC1.0, I see something totally different. I made sure that my ID was removed from all four users groups, all licenses were removed, and my ID is not in user list of any project area. However, I'm still able to logon to Jazz/Web in this case.

Any further comments please? Thanks.

permanent link
Clement Liu (1.5k54149) | answered Feb 10 '10, 10:28 a.m.
I want to run a monthly report to show those users who have been deleted from LDAP already so I can archive the users from RTC.

How could I achieve this? Thanks

permanent link
Anthony Kesterton (7.4k5172136) | answered Feb 10 '10, 11:12 a.m.
JAZZ DEVELOPER
I want to run a monthly report to show those users who have been deleted from LDAP already so I can archive the users from RTC.

How could I achieve this? Thanks


This is probably more a function of your LDAP system - not something you can do from RTC directly.

anthony

permanent link
James Moody (3.3k24) | answered Feb 12 '10, 9:23 a.m.
JAZZ DEVELOPER
On 2/10/2010 11:23 AM, kesterto wrote:
clementliuwrote:
I want to run a monthly report to show those users who have been
deleted from LDAP already so I can archive the users from RTC.

How could I achieve this? Thanks

This is probably more a function of your LDAP system - not something
you can do from RTC directly.

anthony


Correct, RTC reports don't have access to this information.

james
RTC Reports Team Lead

permanent link
Chris Cawthorne (962719) | answered Feb 12 '10, 9:43 a.m.
I think you have misunderstood this - you clearly don't have any direct way of listing which members have been deleted from a bluegroup. We need a process (similar to LDAPNightlySyncTask) that will compare the current members of the bluegroup with the active Jazz users, and then either archive the Jazz userids that are no longer members of the bluegroup, or produce a report.
Alternatively, can you tell us whether there's some way to produce a list of active Jazz users, using a command-line tool. FWIW, I have just opened requirement 105688 against Jazz, asking for this:

https://jazz.net/jazz/web/projects/Jazz%20Foundation#action=com.ibm.team.workitem.viewWorkItem&id=105688&tab=overview

Your answer


Register or to post your answer.