General - Security settings

~~Die~~The ~~Architektur~~architecture ~~des~~of SCCM ~~Managers~~Manager ~~bietet~~provides ~~verschiedene~~various ~~Möglichkeiten~~ways ~~den~~to ~~Zugriff~~control ~~auf~~access ~~dessen~~to ~~Dienste~~its ~~und~~services ~~auf~~and ~~verschiedene~~to ~~SCCM-Objekte~~various zuSCCM ~~regeln.~~objects.

Control Panel

InA ~~jeder~~user ~~Funktionsgruppe~~group ~~und~~permission ~~jedem~~can ~~untergeordnetem~~be ~~Plugin~~defined ~~kann~~in ~~eine~~each ~~Benutzergruppenberechtigung~~function ~~definiert~~group ~~werden.~~and ~~Dies~~subordinate ~~führt~~plug-in. ~~dazu,~~This ~~dass~~results imin only those areas being displayed in the SCCM Manager ~~nur~~for ~~noch~~which ~~die~~the ~~Bereiche~~respective ~~angezeigt~~user ~~werden,~~group zuhas ~~denen~~authorization. ~~die~~These ~~jeweilige~~security ~~Benutzergruppe~~settings ~~eine~~only ~~Berechtigung~~become ~~besitzt.~~active ~~Diese~~once ~~Sicherheitseinstellungen werden erst aktiv, sobald die Option~~the Enable Security ~~aktiviert~~option ~~wurde.~~has been activated.

~~Außerdem~~In ~~kann~~addition, ~~das~~the ~~Wildcard-Zeichen~~wildcard character * ~~genutzt~~can ~~werden,~~be umused soto ~~eine~~achieve ~~dynamische~~dynamic ~~Gruppenberechtigung~~group zuauthorization. ~~erreichen. Beispiel:~~Example: Domain\Prefix-*-Postfix

~~Beachten~~Note ~~Sie,~~that ~~dass~~some ~~einige~~plugins ~~Plugins~~can ~~mehrfach~~be ~~mit~~integrated ~~unterschiedlichen~~multiple ~~Konfigurationen~~times ~~integriert~~with ~~werden~~different ~~können,~~configurations, ~~sodass~~allowing ~~eine~~for ~~besonders~~particularly ~~granulare~~granular ~~Berechtigungssteuerung~~permission ~~möglich ist.~~control.

Computer Scoping

~~Die~~Group-based ~~gruppenbasierte~~computer ~~Computerfilterung~~filtering ~~kann~~can be enabled in ~~der~~the ~~Konfigurationsdatei~~ web.config ~~des~~configuration ~~Webdienstes~~file ~~aktiviert~~of ~~werden.~~the ~~Der~~web ~~Konfigurationsparameter~~service. ~~dazu~~The ~~lautet~~configuration parameter for this is ComputerFilterEnabled. ~~Die~~The ~~Gruppenberechtigungen~~group ~~werden~~permissions are set in ~~der~~the ~~Konfigurationsdatei~~ UserPermissions.xml ~~gesetzt.~~configuration file.

Client Authentifizierungauthentication

~~Diese~~This ~~Funktionalität~~functionality ~~wird~~is ~~dann~~required ~~benötigt,~~if ~~wenn~~communication ~~die~~to ~~Kommunikation~~clients zuis ~~Clients~~to ~~domänenübergreifend~~take ~~stattfinden~~place ~~soll~~across ~~oder~~domains ~~wenn~~or ~~der~~if ~~Server~~the ~~nicht~~server ~~als~~is ~~lokaler~~not ~~Administrator~~entered ~~auf~~as ~~den~~the zulocal ~~verwaltenden~~administrator ~~Clients~~on ~~eingetragen~~the ~~ist.~~clients ~~Pro~~to ~~Domäne~~be ~~kann~~managed. ~~ein~~One ~~Benutzer~~user ~~mit~~with ~~Administratoren-Berechtigung~~administrator ~~angegeben~~privileges ~~werden.~~can ~~Weitere~~be ~~Informationen~~specified ~~dazu~~per ~~finden~~domain. ~~Sie~~For ~~unter~~more information, see ~~Konfiguration~~Configuration / Web Service / Credentials.

SOAP-Header Security

~~Damit~~So ~~nur~~that ~~bestimmte~~only ~~Anwendungen~~certain ~~mit~~applications ~~dem~~can interact with the SCCM Web ~~Service~~Service, ~~interagieren~~it ~~können,~~is ~~ist~~possible esto ~~möglich~~switch ~~die~~on ~~SOAP-Header-Security~~SOAP ~~einzuschalten.~~header ~~Das~~security. ~~führt~~This ~~dazu,~~results ~~dass~~in ~~der~~access ~~Zugriff~~only ~~nur~~being ~~noch~~possible ~~mit~~with ~~einem~~a ~~spezifischen~~specific ~~SOAP-Header~~SOAP ~~möglich~~header. ~~ist.~~This ~~Dieser~~header ~~Header~~can ~~kann~~be ~~mit~~generated ~~der~~with ~~beiliegenden~~the ~~Klassenbibliothek~~enclosed class library SCCMWebService.Token.dll. ~~generiert~~It ~~werden.~~is ~~Außerdem~~also ~~ist~~necessary esto ~~erforderlich~~adapt ~~die~~the ~~Konfigurationsdatei~~configuration file Token.~~xml~~xml. ~~anzupassen.~~For ~~Weitere~~more ~~Informationen~~information, ~~dazu~~see ~~finden Sie unter~~ API / Web Service API.