Security Considerations

Security access determines whether a user can perform an operation on a machine in your domain. TIBCO Administrator users that have Administer access can access all the functionality provided by the Hawk plug-ins.

It is strongly recommended that only administrators have access to the All Alerts console.

Users with read access can view alerts on the All Alerts console, only those users that have write access can suspend alerts.

Security between TIBCO Administrator and TIBCO Hawk

Security is enabled between TIBCO Administrator and TIBCO Hawk by specifying a Java class that implements your security policy. This security policy is specified by the -security_policy option in the hawkagent.cfg configuration file. This configuration file is located in CONFIG_FOLDER\hawk\bin or domain-specific folder, when generated by TIBCO Administrator. For more information on TIBCO Hawk security see the TIBCO Hawk Installation and Configuration Guide.

When invoking or subscribing to TIBCO Hawk microagent methods, the security that is enforced is based on the user that started the TIBCO Administrator server and not the user accessing TIBCO Hawk microagent methods.