Manualshelf

11.0

ManualsBrandsABBYY ManualsApplicationsFlexiCapture
61626364656667686970
© 2014 ABBYY Production LLC. All rights reserved.
64
Security settings in ABBYY FlexiCapture Distributed
For user authentication, either Windows or Basic authentication or authentication by means of the FlexiCapture Au-
thentication Module can be used.
Windows authentication is more secure (login and password are not transmitted over the network in clear text), but
this authentication method is convenient only within a domain.
Basic authentication and FlexiCapture authentication can work outside the domain as well, so these authentication
types must be used for distributed work. The main disadvantage of these authentication types is that user identifica-
tion information (login and password) are transmitted on each request to the server. Therefore, in the case of Basic
authentication (or authentication by means of FlexiCapture, which uses the same protocol), SSL encryption (https)
must be used. Using SSL encryption prevents reading or modifying data sent between client and server.
Client applications working on Basic-authentication or authentication by means of FlexiCapture Authentication Module
have to store the user name and password in a cookie to be able to pass them each time the server is accessed. In
this case, security is ensured by the fact that these data do not get to the drive or a client machine. If a user specifies
the name/password when first accessing the server, between requests these data are stored in the application
memory and are deleted at log off or when closing the browser, so they do not pose a threat to security.
To get the Application Server work over the https protocol, the IIS certificate must be installed on the Application
Server:
Working over https
To ensure safety, you can use https protocol. For this, you need to enable SSL support in IIS settings.
To work with IIS over HTTPS protocol, you need to obtain a certificate for the server and connect it.
Managing certificates
See http://technet.microsoft.com/en-us/library/cc754122.aspx.
Connecting certificate in IIS on Windows 7
In IIS settings, connect HTTPS protocol for Default Web Site. For this:
1. Run IIS Manager Console from the Control Panel.
2. Choose Default Web Site and on the Actions panel, click the Bindings link.
3. In the dialog box that opens click Add and select “https” protocol from the “Type” drop-down list.
4. From the “SSL Certificate” drop-down list, select a desired certificate and click Ok.