It is now possible to browse the ArcGIS Server catalog of folders and services, just as with the default ArcGIS Server REST interface, but in a secure manner, ensuring only those folders, services and even layers available to the browsing user’s role are displayed. All supported requests may be sent to this secure endpoint, and it is now possible to visualise these services in the ArcGIS Server or ArcGIS Online Viewer (www.arcgis.com). Of course, in this context only content will be displayed for which the user is authorized. In this way, authorised persons may access a securityManager-secured ArcGIS Server easily and conveniently. Furthermore, the new version allows the simultaneous use of multiple user management systems. This allows an organization to use internal users from an existing LDAP or Active Directory in addition to external users, which are maintained in a database. This ensures there is no need to mix two disparate groups of users, thereby easing the management of such systems. Particular emphasis has been placed on an even greater security of SecurityManager against Internet-based attacks. Many of the security features are now individually configurable and provide flexible protection against, for example, brute-force attacks, allowing the definition of password policies, or prevention of cross-site scripting attacks.
For more information, visit: http://www.conterra.de/index_en.asp