Note: This feature is not applicable on
WebSphere Commerce for iSeries.
This page allows you to manually launch a security program that checks and deletes temporary WebSphere Commerce files that may contain potential security exposures. Normally the security check program runs as a scheduled job, and is set to run once a month by default.
To invoke the security check program, click Launch from the Launch Security Check page.
The results of the security check, including all actions taken by the program are written to the Security check log window and to the sec_check.log file in the log subdirectory:
WC_installdir/instances/instance_name/log
WC_installdir\instances\instance_name\log
On non-Windows platforms, file permissions are
automatically set by WebSphere Commerce in order that sensitive files cannot be
accessed by unauthorized users. On Windows platforms, you need to set the
permissions manually as follows. This procedure ensures that only the
Administrators group has the read/write/execute right in for sensitive
files:
- In Windows Explorer, right-click on the drive:\WebSphere folder.
- Click Properties and Security. By default the "Everyone" group has the all permission for this folder.
- Click Add.
- A window displays (Select users, computers...). In this window, select the Administrators Group. Note: This can be a bit ambiguous here, since you may see "Administrator" as a user, but you need to add the Administrator group, not the Administrator user. Click Add and then click OK.
- In the Security tab, the Administrators Group has been added. You need to remove "Everyone". Select Everyone, and clear the box that says "Allow inheritable permission...."
- Click Remove on the Security window that is displayed.
For more information, see the section on authentication in the WebSphere Commerce Security Guide.