How to let other user groups besides TDAdmin and not all have access to the OTA Command object
Question ID: 109286

Currently within our workflow customization we have a need to execute a query against the DB to determine if a linked defect exists when a user sets the status of a defect to duplicate. We discovered that only if someone was in the admin group that this query executed. After doing research we did find that adding the DISABLE_COMMAND_INTERFACE=N to the Site Configuration solved the problem however we are concerned if we implement this change in production that we expose additional issues. Can you please tell us what the ramifications of this would be and if it is an acceptable solution or we should try to find another way to do this?

Marked as spam
Posted by (Questions: 204, Answers: 2)
Asked on February 6, 2020 4:18 pm
Answers (1)
Private answer


Yes, there is a way to do this. There is another parameter that works along with the DISABLE_COMMAND_INTERFACE parameter called COMMAND_INTERFACE_READ_ONLY_GROUPS that is documented in the attached file.

Basically, you need to set the DISABLE_COMMAND_INTERACE parameter to ReadOnly

Then, you set the COMMAND_INTERFACE_READ_ONLY_GROUPS to the names of the Groups you want to have access to the Command object, Example: TDAdmin;Developer

This will allow those groups to execute SELECT sql queries.

I hope this helps.

Marked as spam
Posted by (Questions: 1, Answers: 216)
Answered on February 6, 2020 4:33 pm

Welcome back to "EyeOnTesting" brought to you by Orasi Software, Inc.

Scroll to Top