Versions Compared

Version Old Version 9 New Version Current
Changes made by

Denise Meyer

Denise Meyer

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • You can set up a Security Group using the Profile System Beatrix to establish the group of external users you want to access the site or structure group.

  • Then, you must create a Security component and apply it to a site or structure group in Tridionadd the Security group to the website or page properties in Beatrix CMS.

Info

External User Security is a more secure option than Generic security for non-Yale users, as generic security allows for username/password sharing and less transparency on who is accessing your site. Generic security is being deprecated and is only in use for the https://medicine.yale.edu/pediatrics/pcpc/ .

For more information on Generic security or allowing access for Yale personnel with NedIDs via CAS, visit the Security: CAS and GenericAuth-0 instructions.

The following instructions provide information on setting up a Security Group in the Profile System Beatrix, creating a Security component group in the organization that includes the group, and applying the security to a site or structure group in Tridion.

Table of Contents

Table of Contents
excludeTable of Contents

Setting up a Security Group in the

...

Beatrix

The first step in creating External User Security for a site or structure group is to set up a Security Group in the Profile System Beatrix. Security Groups belong to a organization and are editable by any user with organization administrator access to the organization.

  1. Visit https://profile.yale.edu Beatrix

  2. Log in with your NetID and password

  3. Click Organizations in the navigation at the top lef of the page.

  4. Find and select the organization you want to add the Security Group to.

  5. Click the External User Security button in the navigation on the left side of the page.

...

From the External User Security page, click Add New... (highlighted in yellow above), and some fields will pop up to add information for the group (shown below):

...

  1. In the Name field, type in an appropriate name for the Security Group

    • This is the name you will plug into the Tridion Security componentBeatrix web or page properties Security settings.

    • If the name of the group already exists, you will see an error message. If not, the field will let you know the name is unique (shown above).

  2. In the Description field, type in a summary of what the Security Group is for.

  3. Click Add New... in the Guest Users field (highlighted in yellow above) to begin adding external users to the group.

...

From this e-mail, the user should click the provided link (highlighted in yellow above) to set up their account and password. They will then be able to access YSM publications and systems that are secured with Auth0 and External User Security.

Creating a Security Component

The next step in securing a site or structure group for external users is to create a Security component in Tridion.

  • Even though this security is for External Users, you will need to create a Security: CAS component.

...

Click New Component (blue) to begin creating a Security: CAS component.

In the Building Blocks folder of your respective website, click New Component (highlighted in blue above) in the Create tab (highlighted in yellow above) of the navigation bar.

You will be taken to a new page for creating the component (shown below):

...

Creating a Security: CAS component.

...

Enter an appropriate Name for your component.

...

Allow the following groups access: This field allows you to select the type of security and enter the information for who gets access.

  • Select the radio button next to External Role (highlighted in orange above) to use the External Security Group you created in the last section.

...

In the Values field, enter the Name of the External Security Group.

  • The easiest way to do this is by copying and pasting from the Name field of the security group you created in https://profile.yale.edu/

  • You can add, delete, or sort Values with the icons to the left of the field (highlighted in red above).

Info

If you will be using multiple Security Types within this single Security component (for example, NetID and External User Security) it is crucial to use the furthest left green + icon (highlighted in green above) in the Allow the following groups access field to make an additional field for your other values.

Once you've finished inserting your Security Types and coordinating Values, click Save and Close (highlighted in blue above) in the Home tab, and the component is ready to be inserted onto a page in your Root folder

Applying Security to a Structure Group

Once you’ve created a Security component, you are ready to apply that Security to a structure group.

...

Creating a Security page.

...

Within the Structure Group you would like to secure, create a New Page, and start with the General tab.

...

The Name of this new page should be "Security."

...

The File Name must be "security" (lowercase, no spaces).

...

Below Page Template, uncheck the box next to Inherit from Parent (highlighted in yellow above).

...

Select XML from the Page Template dropdown (highlighted in blue above).

...

Click on the Component Presentations tab of your page (highlighted in green above).

...

In the Component Presentations tab of your page, click Insert.

...

Your Building Blocks folder will pop up, select the security component you just created.

...

Select Security: CAS in the Component Template drop down menu.

...

Click Insert to add the component to the page.

...

Bulk Uploads

See /wiki/spaces/OC/pages/2542305295