Skip to main content

OpenLab Security Test

Verifies that the system can only be accessed by authorized users by testing password policy enforcement, roles-based access control, and activity log configuration in OpenLab Shared Services (OLSS).

License

This test requires the QlaSecurity license. The license is acquired at the first execution and is not released back to the license pool after the test completes. If there are insufficient licenses, the test fails at the step "Checking for the license QlaSecurity."

Licenses are installed from the Licenses option in the OpenLab Control Panel Administration tab. Contact Agilent support if you need additional licenses.

Prerequisites

  • The QlaSecurity license must be installed.
  • The System Administrator role with the Manage Security privilege is required to execute this test.
  • If you are using Domain authentication, the test must be configured before it becomes available — see Configuring the OpenLab Security Test below.

What the test verifies

The test creates two users (an admin user and a non-admin user) and imports them into the system. It then uses these users to run a series of security tests in OLSS, verifying:

  • Password policy enforcement
  • Roles-based access enforcement
  • Activity log configuration

The test report includes authentication configuration details, test user roles, and the result of each individual security check.

Running the test

Follow the general test execution steps: select OpenLab Security Test on the home page and click Start.

note

For Domain authentication, a Configure button appears below the test on the home page. You must complete configuration before the test becomes available for execution.

Configuring the OpenLab Security Test

Configuration is required only when using Domain authentication. The configuration is performed once and applied globally to all machines in a client/server environment. Once set on one machine, the configuration appears on all other machines within 3 minutes.

  1. On the home page, click Configure below the OpenLab Security Test to open the Test Configuration form.
  2. Enter credentials for two test users:
    • An admin user
    • A non-admin user
  3. Optionally, select Remove users at the end of the test to delete the test users from the system after the test completes.
  4. Optionally, save the entered credentials for future use.
  5. Click OK.
caution

If Remove users at the end of the test is selected and the Security Test and Storage System Test are run simultaneously, the Storage test may fail with the message "Account is not authorized in this system. Contact system administrator." This occurs when the Security test deletes shared test users before the Storage test finishes. The same issue can occur if the test is run from two different machines at the same time.

To avoid this, configure different test users for the Security and Storage tests.

note

If a currently logged-in user is set as a test user and you select to remove users at the end of the test, the test will fail — the system does not allow removal of a user who is currently logged in.

After the test

Results appear on the home page under Last result. Click the link to open the Security Test report, or use the Execution History page to access reports from previous runs.

For a description of report contents, see Report Contents.