General Notification Service (GNS) Security

Security for the GNS is administered by the Access Control Service (ACS). As with other CygNet services, security is set on an application and event basis. The application name of the GNS is defined in the service configuration file using the keyword ACS_APPLICATION. The default is “GNS.” The security events are listed in the GNS Events table below.

The following tables provide details about GNS security settings. See also Security.

Service Application Name	Main Security Event	Component-Level Security	Subject to Application Override
GNS (name defined in service configuration file)	ACCESS (name defined in service configuration file)	Yes, notification record and notification queue See Component-Level Security.	No

Service Application Name

Main Security Event

Component-Level Security

Subject to Application Override

GNS (name defined in service configuration file)

ACCESS (name defined in service configuration file)

Yes, notification record and notification queue

See Component-Level Security.

GNS Events

Event	Event Description	Authorization	Tasks
ACCESS	Service content management	0-None	View list of notification records in the service
		1-Read	View properties of notification records
		2-Update	Edit notification records (message, recipients, etc.)
		3-Add	Add notification records
		4-Delete	Delete notification records
		5-Admin	Full permission for all service Events (except ODBC) regardless of the authorization for those Events
GNSPIN	GNS user and PIN management	5-Admin	Full permission to view and edit GNS users, email addresses, and their PINs. See Configuring a PIN
ODBC	Access service records from an ODBC-compliant application	0-None	None
		1-Read	View records in the service
		2-Update	Edit existing records
		3-Add	Add records
		4-Delete	Delete records
		5-Admin	Inclusive
QUEUE	Queue management.	0-None	View list of notification records in the queue
		1-Read	Inclusive
		2-Update	Inclusive
		3-Add	Acknowledge notifications online or via email
		4-Delete	Delete notifications from the queue
		5-Admin	Inclusive
SVCINFO	Miscellaneous GenServe security management Note: The SVCINFO event allows changes to log settings and use of the GlobalFunctions method SetGenserveInfo without requiring higher privileges on other actions. Other tasks are listed at right.	0-None	None
		1-Read	Change queue translations This event is used by DBS services to avoid full replication resyncs after failovers.
		5-Admin	Permission level required to perform the following tasks: Give ConfigFileManager remote access to service configuration files Change log settings Change audit levels Perform on-demand backups Change DBS and VHS disk cache minimum and maximum sizes Request an activation check Request the GNS to do notification plugin validations immediately (used by CygNet Explorer)

GNS Component-Level Security