Xerox DocuShare Support & Software プリント
DocuShare 6.6
Best Practices
Best Practices
2
Persistent login
•
In Site Management l Account Policies, select Allow User to Remain Logged In.
Enabling Allow user to Remain Logged In places a checkbox on the site Login page. During log in,
if the user checks the box, DocuShare places a cookie on the users computer. As long as the user
does not log out of DocuShare, the cookie logs the user back in whenever the user reconnects to
the DocuShare site.
if the user checks the box, DocuShare places a cookie on the users computer. As long as the user
does not log out of DocuShare, the cookie logs the user back in whenever the user reconnects to
the DocuShare site.
Enabling persistent login is not recommended for secure installations or for sites that are accessed
openly over the Internet.
openly over the Internet.
Permissions
•
Define content permissions as soon as possible. Best practice is to create the Taxonomy (Site
Layout) before you install DocuShare software. Set each top level collection permission to act as
the parent for all child collections; sub-collections inherit permissions from the top level collection.
Layout) before you install DocuShare software. Set each top level collection permission to act as
the parent for all child collections; sub-collections inherit permissions from the top level collection.
Administrator accounts
DocuShare provides three types of administrator accounts:
Site Administrators have full access to the Administration UI and to all DocuShare content.
Content Administrators can not access all of the Administration UI, but they can access all
DocuShare content.
DocuShare content.
Account Administrators can only create new user accounts.
•
After DocuShare installation, immediately set up additional administrator accounts.
•
Do not have all administrators log in under the default admin account; it would be difficult to tell
the difference between administrators when viewing site access activity in the log files. If user
DJones needs to be admin, then create two user accounts for DJones.
the difference between administrators when viewing site access activity in the log files. If user
DJones needs to be admin, then create two user accounts for DJones.
Example 1: DJones is a Site Administrator. DJones would have two user accounts; a DJones
account and a DJones _SiteAdmin account. The DJones account would belong to the Account
Administrator group. This would enable DJones to create new user accounts without having to
login as admin.
account and a DJones _SiteAdmin account. The DJones account would belong to the Account
Administrator group. This would enable DJones to create new user accounts without having to
login as admin.
Example 2: RSmith is a Content Administrator. RSmith would have two user accounts; an RSmith
account and an RSmith_ContentAdmin account. This way there will be less chance that the user
will make a mistake while logged in as either Admin or as Content Admin.
account and an RSmith_ContentAdmin account. This way there will be less chance that the user
will make a mistake while logged in as either Admin or as Content Admin.
When logging is enabled, it is easier to audit activity of each administrator.
•
Another possibility is to remove the Site Administrators group from the Content Administrators
group, then users within the Site Administrators group will not be able to view site content.
group, then users within the Site Administrators group will not be able to view site content.