https://pslens.com/categories/security/Recent content in Security on psLensHugoen-ushttps://pslens.com/docs/reports/security/security-full-access/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/reports/security/security-full-access/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="full-access-permission-lists-report">Full Access Permission Lists Report</h2> <p><strong>Report ID:</strong> <code>security-full-access-permlists</code> <strong>Category:</strong> Security <strong>Default Parameter:</strong> <code>minMenuCount = 50</code></p>https://pslens.com/docs/reports/security/security-nodes-no-password/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/reports/security/security-nodes-no-password/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="nodes-with-no-password-report">Nodes with No Password Report</h2> <p><strong>Report ID:</strong> <code>security-nodes-no-password</code> <strong>Category:</strong> Security</p>https://pslens.com/docs/use-cases/security-admins/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/use-cases/security-admins/<h2 id="the-challenge">The Challenge</h2> <p>PeopleSoft security is complex. Users are assigned to roles. Roles contain permission lists. Permission lists grant access to components, pages, and web services. Understanding who has access to what means tracing through multiple layers, often across dozens of screens or with custom SQL queries.</p> <p>An overly-broad permission list can expose sensitive data; a forgotten role assignment can give someone access they should not have. Manual review misses both because there is too much to check.</p>https://pslens.com/docs/alerts/process-scheduler/locked-oprid-processes/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/alerts/process-scheduler/locked-oprid-processes/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="locked-oprid-scheduled-processes-alert">Locked OPRID Scheduled Processes Alert</h2> <p><strong>Alert ID:</strong> <code>locked_oprid_processes</code> <strong>Category:</strong> Process Scheduler</p>https://pslens.com/docs/reports/security/security-stale-passwords/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/reports/security/security-stale-passwords/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="stale-password-audit-report">Stale Password Audit Report</h2> <p><strong>Report ID:</strong> <code>security-stale-passwords</code> <strong>Category:</strong> Security</p>https://pslens.com/docs/reports/security/security-user-access/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/reports/security/security-user-access/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="user-full-access-report">User Full Access Report</h2> <p><strong>Report ID:</strong> <code>security-user-access</code> <strong>Category:</strong> Security <strong>Parameters:</strong> <code>oprid</code> (required) — the PeopleSoft User ID to audit</p>https://pslens.com/docs/use-cases/reducing-app-designer-access/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/use-cases/reducing-app-designer-access/<h2 id="the-problem">The Problem</h2> <p>Someone on the team needs to look something up in PeopleSoft. Maybe a business analyst is writing requirements and needs to see what fields are on a record. Maybe an auditor needs to understand how security is configured. Maybe a functional consultant needs to trace a component&rsquo;s menu path.</p> <p>The default answer is: give them App Designer.</p> <p>This happens because App Designer is the only tool that lets you browse PeopleSoft object definitions. There is no read-only alternative built into PeopleSoft. So people who only need to look things up end up with the same tool that developers use to build and modify the application.</p>https://pslens.com/docs/reports/security/security-dangerous-permissions/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/reports/security/security-dangerous-permissions/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="dangerous-permissions-audit-report">Dangerous Permissions Audit Report</h2> <p><strong>Report ID:</strong> <code>security-dangerous-permissions</code> <strong>Category:</strong> Security</p>https://pslens.com/docs/alerts/security/failed-logins/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/alerts/security/failed-logins/<div id="pslens-context-panel" class="card border-info mb-4 d-none"> <div class="card-header bg-light text-info py-2 fw-bold d-flex align-items-center border-bottom border-info-subtle"> <i class="bi bi-info-circle-fill me-2"></i> <span>Tailored Operational Context</span> </div> <div class="card-body p-0"> <ul class="list-group list-group-flush"> <li id="row-db" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Target Database:</strong> <span id="ctx-db" class="badge bg-secondary font-monospace">&mdash;</span> </li> <li id="row-type" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Context Type:</strong> <span id="ctx-type" class="badge bg-light text-dark border font-monospace text-uppercase">&mdash;</span> </li> <li id="row-severity" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Alert Severity:</strong> <span id="ctx-severity" class="badge">&mdash;</span> </li> <li id="row-time" class="list-group-item d-flex align-items-center justify-content-between py-2 d-none"> <strong>Triggered Time:</strong> <span id="ctx-time" class="text-muted small">&mdash;</span> </li> <li id="row-details" class="list-group-item py-2 d-none"> <strong id="label-details" class="d-block mb-1">Firing Context:</strong> <code id="ctx-details" class="d-block p-2 bg-light border rounded small" style="white-space: pre-wrap; word-break: break-all;">&mdash;</code> </li> </ul> </div> </div> <script> (function() { const params = new URLSearchParams(window.location.search); const metadata = params.get('metadata'); if (!metadata) return; try { const base64 = metadata.replace(/-/g, '+').replace(/_/g, '/'); const jsonStr = decodeURIComponent(escape(window.atob(base64))); const data = JSON.parse(jsonStr); if (data) { let hasData = false; if (data.db) { document.getElementById('ctx-db').textContent = data.db; document.getElementById('row-db').classList.remove('d-none'); hasData = true; } if (data.type) { document.getElementById('ctx-type').textContent = data.type; document.getElementById('row-type').classList.remove('d-none'); hasData = true; } if (data.severity) { const severityBadge = document.getElementById('ctx-severity'); const severity = data.severity.toLowerCase(); severityBadge.textContent = severity.toUpperCase(); if (severity === 'critical') { severityBadge.className = 'badge bg-danger'; } else if (severity === 'warning') { severityBadge.className = 'badge bg-warning text-dark'; } else { severityBadge.className = 'badge bg-info'; } document.getElementById('row-severity').classList.remove('d-none'); hasData = true; } if (data.t) { const date = new Date(data.t * 1000); document.getElementById('ctx-time').textContent = date.toLocaleString(); document.getElementById('row-time').classList.remove('d-none'); hasData = true; } if (data.details) { document.getElementById('ctx-details').textContent = data.details; const labelDetails = document.getElementById('label-details'); if (data.type === 'object') { labelDetails.textContent = 'Object Metadata Details:'; } else if (data.type === 'report') { labelDetails.textContent = 'Report Description:'; } else { labelDetails.textContent = 'Firing Context:'; } document.getElementById('row-details').classList.remove('d-none'); hasData = true; } if (hasData) { document.getElementById('pslens-context-panel').classList.remove('d-none'); } } } catch (e) { console.error('Failed to parse operational context metadata:', e); } })(); </script> <h2 id="failed-logins-alert">Failed Logins Alert</h2> <p><strong>Alert ID:</strong> <code>failed_logins</code> <strong>Category:</strong> Security <strong>Default threshold:</strong> 5 failed attempts</p>https://pslens.com/docs/security/permission-lists/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/security/permission-lists/<h2 id="permission-lists">Permission Lists</h2> <p><strong>URL:</strong> <code>/permissionlists</code></p> <p>Permission lists (PSCLASSDEFN, sometimes called classes) are the lowest-level grantable security object. Every menu, component, page, and function authorization attaches to one.</p> <h3 id="what-you-can-do">What You Can Do</h3> <ul> <li><strong>View Full Definitions:</strong> See description, last modified information, and general settings.</li> <li><strong>View Authorizations:</strong> See which menus and components the permission list authorizes.</li> <li><strong>View Assigned Roles:</strong> See which roles include this permission list.</li> <li><strong>Sign-on Settings:</strong> View allowed sign-on times and other access constraints.</li> </ul> <h3 id="when-its-useful">When It&rsquo;s Useful</h3> <ul> <li>Auditing what access a particular permission list grants before assigning it.</li> <li>Incident response: what could a compromised permission list have touched.</li> <li>Finding permission lists that are overly broad (see also the <a href="https://pslens.com/docs/reports/security/security-full-access/">Full Access Permission Lists report</a>).</li> </ul>https://pslens.com/docs/security/roles/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/security/roles/<h2 id="roles">Roles</h2> <p><strong>URL:</strong> <code>/roles</code></p> <p>Roles (PSROLEDEFN) are named bundles of permission lists. Users get roles, not permission lists directly.</p> <h3 id="what-you-can-do">What You Can Do</h3> <ul> <li><strong>View Included Permission Lists:</strong> See the list of permission lists assigned to the role.</li> <li><strong>View Assigned Users:</strong> See which users are assigned this role.</li> <li><strong>Metadata Inspection:</strong> See the role&rsquo;s description and last modified information.</li> </ul> <h3 id="when-its-useful">When It&rsquo;s Useful</h3> <ul> <li>Understanding what an unfamiliar role grants.</li> <li>Checking whether a role contains permission lists that are unexpectedly broad.</li> <li>Finding all users who have a particular role.</li> </ul>https://pslens.com/docs/security/users/Mon, 01 Jan 0001 00:00:00 +0000https://pslens.com/docs/security/users/<h2 id="users">Users</h2> <p><strong>URL:</strong> <code>/users</code></p> <p>Users (PSOPRDEFN, historically called operators) are login accounts. Each carries a set of roles, a primary permission list, a row-security permission list, and a process profile. Search supports both OPRID and name.</p> <h3 id="what-you-can-do">What You Can Do</h3> <ul> <li><strong>View Assigned Roles:</strong> See the roles assigned to a user.</li> <li><strong>Core Security Attributes:</strong> See primary permission list, row security permission list, and process profile.</li> <li><strong>Account Metadata:</strong> View account status (active/inactive), last login, and email address.</li> <li><strong>Password Settings:</strong> See password-related settings (whether a password is set, when it expires).</li> </ul> <h3 id="when-its-useful">When It&rsquo;s Useful</h3> <ul> <li>Checking what access a specific user has.</li> <li>Reviewing user accounts during security audits.</li> <li>Finding accounts that are inactive but still have broad role assignments.</li> <li>Investigating who has access to a sensitive area of the system.</li> </ul>