Learn about configuring security on a new Data Archive installation

This section discusses how to configure security for new Data Archive installations. If you implement one of these configurations now, you are free to make changes at any time.

• Option 1:

  Understand quick-start configuration describes a simple configuration that you can use while you are working on a more comprehensive security configuration plan. While very quick to implement, this configuration is not as secure or as flexible as the recommended configuration. However, options for improving the security and flexibility of this configuration are included. For simple systems, this might be sufficient for your needs.

• Option 2:

  Understand how to configure security for Data Archive explains how to create and implement a custom Data Archive security configuration that uses Microsoft Active Directory (AD) for authentication (but not for PI access permissions; these are still defined directly on the Data Archive server). This is the recommended configuration path.

The above configuration options assume that you are using AD for authentication and that all users are on the same domain or on fully-trusted domains. If the Data Archive server will be accessed by client applications across non-trusted domains, then these configurations might be difficult to implement. You can alternatively use local Windows security alone or in conjunction with AD. See Learn about other security configurations to determine your options.

For instructions on upgrades, see Configuring security for Data Archive upgrades.