Allow users to configure the authentication of the Rulerunner WCF Service

Edit online

To address the issue when the Central Rulerunner Web Service always returns Invalids Windows Credentials for unauthorized users, the Rulerunner WCF service has been enhanced to allow users to configure the authentication of the Rulerunner WCF Service.

Currently when the user is authenticated to control the WCF Service by using both the user credentials and group membership, they are required to be a member of at least one of the following groups: Builtin Administrators, Domain Admins, Administrators, or Enterprise Admins.

The enhanced Rulerunner WCF service update allows the configuration of any list of groups or to completely skip the group membership authentication requirement by these users.

Important: Review the generated centralwcfservice.0 log file created in the \Datacap folder to assist in troubleshooting any issues.

Configure either of these example settings in the web.config file found in C:\Datacap\CentralRulerunnerService folder.

Example 1: Only verify the user credentials and skip group membership verification.

<appSettings>
    <add key="LogEnable" value="True"/>
    <add key="LogPath" value="C:\Datacap"/>
    <add key="LogSeverity" value="1"/>
    <add key="skipGroupValidation" value="True"/>
</appSettings>

Example 2: Configure user group membership to a group named 'Testers' and 'Developers'

<appSettings>
    <add key="LogEnable" value="True"/>
    <add key="LogPath" value="C:\Datacap"/>
    <add key="LogSeverity" value="1"/>
    <add key="AdminGroups" value="Testers,Developers"/>
</appSettings>

The centralwcfservice.0 log file that is created in the \Datacap folder contains entries to help troubleshoot any issues.