As part of a SmartConnect web service installation process (ASP.NET or WCF REST services) default authentication is set to anonymous access, and an impersonation user selected. This is the user that will run map processing through the SmartConnect web service. In effect this means that any SmartConnect processing triggered through the SmartConnect web service will run as the impersonation user. Because of this security for the SmartConnect web service impersonation user must take the following things into account:
The impersonation user must be a valid SmartConnect user, and should in most instances have the relevant security to access SmartConnect maps that will be accessed through the service.
Note: if the run as user option has been defined on a map the impersonation user will not need map or connector access within SmartConnect to run the map.
Data Source Security
The impersonation user must have appropriate access to data source information. In most cases the data to be processed will be passed to the web service, and in that instance access to the data source will not be needed, however if no data is passed, the impersonation user should have the required access. These may include:
|•||Access to the relevant area of the file system for folder, xml, excel or text file data sources.|
|•||Access to the relevant MSSQL server for GP or MSSQL data sources|
|•||Access to the relevant CRM system if no default user has been defined in CRM setup|
The impersonation user must have appropriate access to destination systems. These may include:
|•||Access to the applicable area of the file system where maps output to XML or text files|
|•||Access to the applicable area of the file system where maps are to log information to the file system|
|•||Applicable Dynamics GP access where updates are to be made to GP.|
|•||Applicable CRM access where a default user has not been defined in CRM setup.|