FAQ: “I did a EZMQC-ER 4.81 installation yesterday. The pre-installation wizard worked fine; the software was installed within a network, with all users are domain users. I have created two groups, the QCERAdmins and QCERUsers, privileges configured accordingly in EZMQC-ER.
Now the question: Any user who was part of either group has been able to login into software, independent from the person logged into the PC. Is this correct? I (and customer) where under the assumption, only the current PC user can login into EZMQC-ER.
Please confirm if this is correct or if this is a bug.”
We can have further discussions on this but the current situation is as you describe, and there is no software bug. This is regarded as correct from a data security perspective as the EZMQC-ER login/password/privilege level is independent of the Windows login/password/privilege level, causing no security issues with respect to color measurement data created within EZMQC-ER.
Let’s start with Windows access. Any user who has been given privilege by the Sys Admin can log into the network or local PC. Typically, users who log into any computer have instruction to logout before they leave, and there is usually an automatic logoff set if no activity is detected within a fixed length of time. All of this should be recorded in an audit trail in the Windows System Log.
With EZMQC-ER, any user who is assigned by the System Admin to the QCERAdmins or QCERUsers groups can log into EZMQC-ER. The two groups are created and individuals assigned to the two groups by the System Admin. You must be a member of one of those two groups to use our software. The EZMQC-ER privilege level applies only to the File Menu functionality within EZMQC-ER and is based on which group you are in.
There is an Auto Logoff feature within EZMQC-ER (configurable from 5 to 30 minutes by QCERAdmins member that cannot be turned off) such that if no activity is detected within that time interval, the person is automatically logged out of EZMQC-ER (but not the PC which has its own separate Auto Logoff feature).
An audit trail of all activates for all persons logged into EZMQC-ER is maintained in the Event and Job Audit Logs, independent of the Windows System Log.
You are right - a member of QCERAdmins or QCERUsers groups can login into EZMQC-ER software, independent from the person logged into the PC. This is not regarded as a security flaw because network or local PC logins and passwords used to access the PC are not passed on when logging into EZMQC-ER. The EZMQC-ER login/password/privilege level is independent of the Windows login/password/privilege level.
For a System Administrator to operate EZMQC, their login/password must be assigned to the QCERAdmins or QCERUsers group and their privilege to operate EZMQC-ER is limited to the privilege level assigned to that EZMQC-ER group. For example, members of the QCERAdmins or QCERUsers groups cannot delete data records within EZMQC-ER and if the System Admin is assigned to one of those groups, the Sys Admin cannot either, even if they can completely wipe EZMQC-ER from the PC in Windows using their Sys Admin privileges.
You are right again – in most cases the person logging into the Windows local or network computer will be the same person who logs into EZMQC-ER, but they do not have to be. This is not regarded as a security flaw as there is no security issue involving EZMQC-ER data records that would result from this.
If you did implement a requirement to have the person logging into EZMQC-ER be the same person as logged into Windows, how would that add to our color data security? Many versions ago before we had the QCERAdmins and QCERUsers groups, when EZMQC-ER would read in all members of the domain, there was a requirement that the person logged into the network/local PC must use the same loging for EZMQC-ER. It was not regarded as necessary in the current implementation where the EZMQC-ER login/password/privilege level is independent of the Windows login/password/privilege level.