Technical Architecture Overview

About GoldMine Enterprise

The FrontRange Solutions technology vision is straightforward - to provide powerful, ready-to-deploy solutions that can be extended to meet the exact needs of its dyamic customers. To accomplish this, FrontRange has developed a leading-edge architecture, which allows organisations to leverage a common database, reporting engine, business process automation engine, security model and configuration tools.

Benefits include:

• A common architecture that supports all FrontRange applications
• Flexible enough to be configured and supported by nontechnical experts and powerful enough to satisfy the most demanding enterprises
• Designed to integrate with third-party applications and existing data
• Built completely on the Microsoft® .NET product architecture
• Built on industry standards to ensure compatibility and flexibility
• Designed to be secure, scalable and extendable

Security

Strong security is a critical requirement for any solution platform. The challenge faced by many organisations is how to balance security requirements with the administrative cost and effort of creating and maintaining security profiles for hundreds or thousands of end users across multiple applications.

FrontRange Solutions simplifies system security by allowing customers to manage all their end-user security profiles in a centralised repository. User profiles can be imported from Active Directory or existing systems, and security is enforced through industry-standard authentication mechanisms, including NTLM, Kerberos and Basic. Support for internal authorisation is also included in the security subsystem.

Authentication of a smart client user is handled directly by the Foundation security system. This can authenticate the user directly against an internal user database or against any authentication mechanism supported by the Active Directory Services Interface (ADSI). In the case of a login through the Web client, the authentication is performed by the Foundation after any additional authentication enforced by IIS is passed. After initial authentication is performed by the Foundation security system, the Web application enforces authorisation for each request made to the server by ensuring that the correct rights are assigned to the current thread of execution.

Transactional security is ensured through strong encryption and between physical tiers using either Secure Sockets Layer (SSL) encryption or methods employed as part of the WS-Security standard.

Using the provided tools, administrators can create user groups to control access to modules and features, including business object and field-level security. By default the system promotes "least access" security, ensuring that only the minimum access necessary to perform an operation is granted, thus increasing data integrity by limiting access to the proper users.

To discuss your requirements further tel: 0845 6588 121 or e-mail: info@prior-analytics.com