Sheet1 Appcore Suite Test Plan Test Case LDAP Authentication Scenario Nuxeo DAM Nuxeo DM Sugarcrm Orangehrm

Redmine Nuxeo DAM Nuxeo DM Sugarcrm Orangehrm Redmine Expected result authenticate users success fully Authenticate users successfully Authenticate users successfully Authenticate users successfully Authenticate users successfully successful authorization successful authorization successful authorization successful authorization successful authorization autthorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP authorizes using LDAP

LDAP Authorization

LDAP Authentication before Nuxeo DAM intergration Nuxeo DM Sugarcrm Orangehrm Redmine LDAP authorization before intergration Nuxeo DAM Nuxeo DM Sugarcrm Orangehrm RedminePM Add users to LDAP

create users for all apps users must be able to logon once to all apps create users for specific apps users must only logon to specific apps

Edit users information on LDAP change existing information on user must allow users to edit personal information ie passwords system Remove users users no longer required on apps user list delete user permanently Create groups on LDAP create groups of specific users ability to create groups assign users to groups add users to groups Edit users on groups change information of users on groups Remove users from groups users removed from group only and not on entire system Delete group group removed with all its users Define administrators per appole cascade thoughout all apps r Define super users role cascade thoughout all apps Define customers role cascade thoughout all apps Assign users permissions asaccess to apps controlled by permissions per app Assign permissions to roles different permissions as per role Orangehrm grant permissions to groups Page 1

Define Roles

Define permissions

Sheet1 Remove permissions on groups groups permissions removed whenever necessary Remove permissions on rolebe able to remove permissions to roles anytime Remove permissions on users revoke permissions per user Edit permissions per user be able to add/remove/take away some permissions Edit permissions per group manage group permissions Edit permissions per role manage role permissions LDAP session timeout per application Nuxeo DAM Sugarcrm Orangehrm Nuxeo DM RedminePM LDAP Security Testing timeout should be as configured timeout should be as configured timeout should be as configured timeout should be as configured timeout should be as configured LDAP injection system must be secure against an LDAP injection Encrypt cookies cookies with sentive information must be encrypted SASL Authentication enabled Factor authentication at least two factor authentication must be implemented Cookies on different web browsers consistent behaviour of cookies on all apps Verify which authenticationtype has been implemented Page 2 .

Sheet1 Appcore Suite Test Plan Actual result Priority High High High High High High High High High High High High High High High High High High High High High High Pass/Fail ers success fully sers successfully sers successfully sers successfully sers successfully able to logon once to all apps y logon to specific apps low users to edit personal information ie passwords High High High High ation of users on groups High from group only and not on entire systemHigh with all its users High High High High High High High Page 3 oughout all apps oughout all apps oughout all apps controlled by permissions ssions as per role .

Sheet1 High High High High High High medium medium medium medium medium sions removed whenever necessary ove permissions to roles anytime ions per user remove/take away some permissions be as configured be as configured be as configured be as configured be as configured e secure against an LDAP injection ntive information must be encrypted High High High tor authentication must be implemented High aviour of cookies on all apps Low medium Page 4 .

Sheet1 Severity Page 5 .

Sheet1 Page 6 .

Sign up to vote on this title
UsefulNot useful