DISABLING INTERNET EXPLORER in OneWorld - The Answer

kastanek

Well Known Member
Hello List!

I've seen thread on this particular topic fairly regularly and there never
seems to be a definitive answer. Most people talk about using Windows
based security on the server side which adds complexity and another layer
to administer. Other people talk about renaming the IEXPLORE.EXE program
which doesn't work either since Windows just reinstalls it when it needs
it.

Here's what I have just come up with and it seems to be working just fine.
I'll run it for a while and let you all know if there's any issues with it
that I can find.

Internet is accessible through three main areas: The Task Bar in the
Solution Explorer, The Action bar in all OneWorld Applications and the
TOOLS Exit bar in every application.

The Task Bar access can be secured out using Solution Explorer Security in
Security Workbench - no sweat. The trick has been securing it out of the
other two areas. Here's how I did it.

The application that runs behind the scenes and controls the Tools Exit as
well as the Action Bar is called PHYPER.

From OMW:

- Check out PHYPER
- Design
- Design Tools
- Start Form Design Aid
- Select form: "Find/Browse"
- Select FORM from the menu bar and click "Menu\Toolbar Exits"
- Scroll to "Exit to Internet Browser" and highlight it
- Click Select
- Under STATE select DISABLED
- Click OK
- Click Close
- Repeat the last 7 steps for forms: Header/Detail and Headerless Detail
- Save the forms
- Check the object back in and promote as required.

After the forms are validated the change will be visible on your
development machine. To make these changes available to every fat client
you need to do a full build. Update builds did not work for me. Probably
because I was missing something but the full build worked just fine.

Internet Explorer options are now greyed out for all fat clients, Terminal
Servers (this was a security hole to the C: drive as well) in both
Solution and OneWorld Classic explorers.

I hope this works for you guys. I'd love to hear some feed back as to any
issues that this may cause or success you get with this.

Regards,

Gerald.

Oneworld XE B7333 sp 18.1 update 3 AS/400 + W2k
 
Great tip, and on a similar theme, if you type EXPLORER in the FastPath it will launch an explorer window. If you have a seamless application on Citrix it drops into the Desktop shell. Something to be avoided, and it appears to be hard coded into the system.

I got around it by adding a FastPath item OO|FP called EXPLORER and pointing it to a custom menu item that runs the P00890 (Help|About OneWorld). Now if you type in Explorer in the FastPath all you get is help about OneWorld.
 
Can we move this to the Tips and Traps section? Looks like the sort of thing we should all know about
 
Hello List,

I did some more research and it looks like I got the JDE.INI setting to
work.

By going into the JDE.INI section: [INTERACTIVE RUNTIME] and commenting
out the line "DefaultBrowser=http://...." the internet link on the Action
Bar and the Tools Exit bar no longer work. They are still bright and look
like they work but clicking them does nothing.

So that gives us two ways to disable Internet access. It seems the JDE.INI
way is the easiest.

Thanks to Perry for making me revisit that option.

Regards,
Gerald.






Gerald
Kastanek/Toronto/ To: Gerald Kastanek/Toronto/IBM@IBMCA
IBM@IBMCA cc:
Sent by: Subject: DISABLING INTERNET EXPLORER in OneWorld - The Answer
owner-jdelist@jde
list.com


10/02/2002 07:28
PM
Please respond to
jdelist





Hello List!
I've seen thread on this particular topic fairly regularly and there never
seems to be a definitive answer. Most people talk about using Windows
based security on the server side which adds complexity and another layer
to administer. Other people talk about renaming the IEXPLORE.EXE program
which doesn't work either since Windows just reinstalls it when it needs
it.
Here's what I have just come up with and it seems to be working just fine.
I'll run it for a while and let you all know if there's any issues with it
that I can find.
Internet is accessible through three main areas: The Task Bar in the
Solution Explorer, The Action bar in all OneWorld Applications and the
TOOLS Exit bar in every application.
The Task Bar access can be secured out using Solution Explorer Security in
Security Workbench - no sweat. The trick has been securing it out of the
other two areas. Here's how I did it.
The application that runs behind the scenes and controls the Tools Exit as
well as the Action Bar is called PHYPER.
From OMW:
- Check out PHYPER
- Design
- Design Tools
- Start Form Design Aid
- Select form: "Find/Browse"
- Select FORM from the menu bar and click "Menu\Toolbar Exits"
- Scroll to "Exit to Internet Browser" and highlight it
- Click Select
- Under STATE select DISABLED
- Click OK
- Click Close
- Repeat the last 7 steps for forms: Header/Detail and Headerless Detail
- Save the forms
- Check the object back in and promote as required.
After the forms are validated the change will be visible on your
development machine. To make these changes available to every fat client
you need to do a full build. Update builds did not work for me. Probably
because I was missing something but the full build worked just fine.
Internet Explorer options are now greyed out for all fat clients, Terminal
Servers (this was a security hole to the C: drive as well) in both
Solution and OneWorld Classic explorers.
I hope this works for you guys. I'd love to hear some feed back as to any
issues that this may cause or success you get with this.
Regards,
Gerald.
Oneworld XE B7333 sp 18.1 update 3 AS/400 + W2k
--------------------------
 
Just FYI...

For those wanting to use the PHYPER method there are 4 forms not 3 like I
listed below. They are:

Find/Browse
Header/Detail
Headerless Detail
Fix/Inspect

But the JDE.INI solution is still much easier.

Cheers!
Gerald.





Gerald
Kastanek/Toronto/ To: Gerald Kastanek/Toronto/IBM@IBMCA
IBM@IBMCA cc:
Sent by: Subject: DISABLING INTERNET EXPLORER in OneWorld - The Answer
owner-jdelist@jde
list.com


10/02/2002 07:28
PM
Please respond to
jdelist





Hello List!
I've seen thread on this particular topic fairly regularly and there never
seems to be a definitive answer. Most people talk about using Windows
based security on the server side which adds complexity and another layer
to administer. Other people talk about renaming the IEXPLORE.EXE program
which doesn't work either since Windows just reinstalls it when it needs
it.
Here's what I have just come up with and it seems to be working just fine.
I'll run it for a while and let you all know if there's any issues with it
that I can find.
Internet is accessible through three main areas: The Task Bar in the
Solution Explorer, The Action bar in all OneWorld Applications and the
TOOLS Exit bar in every application.
The Task Bar access can be secured out using Solution Explorer Security in
Security Workbench - no sweat. The trick has been securing it out of the
other two areas. Here's how I did it.
The application that runs behind the scenes and controls the Tools Exit as
well as the Action Bar is called PHYPER.
From OMW:
- Check out PHYPER
- Design
- Design Tools
- Start Form Design Aid
- Select form: "Find/Browse"
- Select FORM from the menu bar and click "Menu\Toolbar Exits"
- Scroll to "Exit to Internet Browser" and highlight it
- Click Select
- Under STATE select DISABLED
- Click OK
- Click Close
- Repeat the last 7 steps for forms: Header/Detail and Headerless Detail
- Save the forms
- Check the object back in and promote as required.
After the forms are validated the change will be visible on your
development machine. To make these changes available to every fat client
you need to do a full build. Update builds did not work for me. Probably
because I was missing something but the full build worked just fine.
Internet Explorer options are now greyed out for all fat clients, Terminal
Servers (this was a security hole to the C: drive as well) in both
Solution and OneWorld Classic explorers.
I hope this works for you guys. I'd love to hear some feed back as to any
issues that this may cause or success you get with this.
Regards,
Gerald.
Oneworld XE B7333 sp 18.1 update 3 AS/400 + W2k
--------------------------
 
Can't you obtain the same results by "securing" Internet Explorer via security workbench?
 
Unfortunately no. Security workbench only takes the Internet icon off of
the main menu beside the Task View Selection icon. Not from the Action
Bar within the applications nor from the Tools Exit bar.





tgore
<tgore@saraleecof To: Gerald Kastanek/Toronto/IBM@IBMCA
fee.com> cc:
Sent by: Subject: Re: DISABLING INTERNET EXPLORER in OneWorld - The Answer
owner-jdelist@jde
list.com


10/03/2002 03:16
PM
Please respond to
jdelist





Can't you obtain the same results by "securing" Internet Explorer via
security workbench?
AS400 820 V4R5, World, OW B7333 Xe SP17.1, CITRIX, HP9000 11.0, Mainframe
MVT/VSE
--------------------------
To view this thread, go to:
http://www.jdelist.com/ubb/showthreaded.php?Cat=&Board=OW&Number=42898
+ - - - - - - - - - - - - - - - - - - - - - - - -+
This is the JDEList One World® / XE mailing list/forum.
Archives and information on how to SUBSCRIBE, and
UNSUBSCRIBE can be found on the JDEList Forum at
http://www.JDEList.com

JDEList is not affiliated with JDEdwards®

+ - - - - - - - - - - - - - - - - - - - - - - - -+
 
Back
Top