September 2011
September 2011
September 2011
Session-wise Plan
Session I & II
SMS
• User creation
• Access to user profiles
Session III & IV
SMS
• Authorization rights
• Sign-on & password reset
• Sign-on deactivation & password reactivation
Objective
Bank user/Banker
For implementing various banking operations through T24
Banker -> Allowed to perform only specified or enabled operations
Enhances the security of banking
User Creation
Access restricted to each individual or group of users through -> USER Application
Any changes to user profile is reflected only when
• User logs off the system
• Logs in again using the same user name
Access Restriction
H – History Restore
I – Input
P – Print
S – See
V – Verify
Q – Auditor Review
Example
Attempts
Specifies the number of unsuccessful Attempts to sign on allowed using the Sign on
name of the User record, before the Password is Disabled
User records Disabled in this way are shown in the Password exception list
The maximum value allowed in this field is 9
Unsuccessful User Attempt
SIGN.ON.OFF.LOG
Specifies whether or not a record should be written to the Protocol file, recording every
time this User Signs On/off
Note: Unsuccessful attempts to SIGN.ON are always logged, regardless of the value in this
field
SECURITY.MGMT.L
Specifies whether or not a record should be written to the Protocol file, every time this
User accesses any of the Security Management Applications
User linking with Protocol file
APPLICATION.LOG
Specifies whether or not records should be written to the Protocol file, recording every
Application accessed by this User
FUNCTION.ID.LOG
Specifies whether or not full details of every
• Application,
• Function and
• record ID accessed by this User should be recorded in the Protocol file
USER.SMS.GROUP
Error appears as shown, preventing user from using the Application attached in
USER.SMS.GROUP
Grouping – Field Level
Example,
Any FT record created by this User can only have ‘AC’ as the Transaction Type
Grouping – Field Level
Error appears as the User is not allowed to input Transaction type other than ‘AC’ in the FT
version
Grouping – Attribute Level
REALTIMEENQUIRY -> Allows the use of real time enquiries for this user
LOCK.PREFERENCES -> Prevents the user from gaining access to various Desktop
settings including file locations and some system administrative functions
Attributes
LOCK.DESIGNERS -> To disable all Designer's menu items on Desktop menu bar.
LOCK.MISC.ITEMS -> Prevents the user from gaining access to
• user toolbar
• list of enquiries and
• list of reports in desktop
Authorization Rights
Authorization
User Application -> Attach Override Classification name in field ‘Override Class’
User Access
Example
ID of the final authorizer -> Appended to the Override Message pre-fixed with a *
Authorize the record using the User attached with the Override ‘MNGR’
Sign-On Reset
Arises when:
User closes their PC without closing T24
Hardware or system failure occurs
Types Of Sign Off
User Initiated
Inactive Session
Hardware Failure
Password Reset