U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Alfresco APSCA Exam - Topic 2 Question 40 Discussion

For security reasons you do not want to allow any processes to be designed with script tasks as it could be used maliciously, is there a way to prevent this?
C) A validator property can be set to false to disable script tasks in the activiti-app.properties file.
A) No, this is a base task in the App Designer process editor and it cannot be disabled, you will need to restrict who has access to App Designer to create processes.
B) The capability 'script task allowed' can be removed from the capability group for users you want to prevent from using script tasks.
D) If you synchronize in users from external, you can modify configuration in the activiti-ldap.properties to prevent users from using script tasks 'ldap.synchronization.scripttask=false'.

Alfresco APSCA Exam - Topic 2 Question 40 Discussion

Actual exam question for Alfresco's APSCA exam
Question #: 40
Topic #: 2
[All APSCA Questions]

For security reasons you do not want to allow any processes to be designed with script tasks as it could be used maliciously, is there a way to prevent this?

Show Suggested Answer Hide Answer
Suggested Answer: C

by Rolande at Mar 24, 2023, 08:25 AM

Limited Time Offer

25%

Off

Get Premium APSCA Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Nadine
7 months ago
C seems a bit too technical for most users.
upvoted 0 times
...
Viva
7 months ago
D is interesting, didn't know LDAP could help with this.
upvoted 0 times
...
Paris
8 months ago
Wait, can you really disable script tasks? That's surprising!
upvoted 0 times
...
Jennie
8 months ago
I disagree, I think A is the only way to go.
upvoted 0 times
...
Mi
8 months ago
Option B sounds right, you can control user capabilities.
upvoted 0 times
...
Alexis
8 months ago
I vaguely recall something about LDAP configurations, so option D might be a possibility, but I need to double-check my notes on that.
upvoted 0 times
...
Leonor
8 months ago
I think we covered something about restricting access in App Designer, which makes me lean towards option A, but I’m not completely confident.
upvoted 0 times
...
Reuben
8 months ago
I'm not entirely sure, but I feel like we talked about the activiti-app.properties file in one of the practice questions. Option C sounds familiar, but I could be mixing it up.
upvoted 0 times
...
Nieves
8 months ago
I remember discussing the importance of user permissions in our last study group, so I think option B might be the right choice.
upvoted 0 times
...
Tamekia
8 months ago
I think the LDAP synchronization option could be a way to control script tasks, but I’m not confident about the exact configuration details.
upvoted 0 times
...
Vincent
8 months ago
I vaguely recall something about the activiti-app.properties file, but I can't remember if setting a validator property to false is the right method.
upvoted 0 times
...
Shaun
8 months ago
I'm not entirely sure, but I think option B sounds familiar. We did cover capability groups and how to manage permissions.
upvoted 0 times
...
Yuonne
8 months ago
I remember discussing the importance of user access control in our last study group, so I think restricting access to App Designer is a valid approach.
upvoted 0 times
...
Dean
9 months ago
I'm pretty sure the answer is A. Both Source and Destination Checks need to be disabled for VM-Series to forward traffic between its interfaces.
upvoted 0 times
...
Lou
9 months ago
Hmm, I'm a bit confused on this one. I know model B VPRN involves the ASBRs peering with each other, but I'm not sure about the specifics of the VPRN configuration. I'll have to think this through carefully.
upvoted 0 times
...
Art
9 months ago
I think we might need to assign an AAD login ID for each agent to get them started. That seems crucial.
upvoted 0 times
...
William
1 year ago
Hmm, I wonder if I can still sneak in a few script tasks without anyone noticing. I mean, what's the worst that could happen? Oh, wait, it's a security risk. Nevermind, I'll stick to the safe options.
upvoted 0 times
Marvel
1 year ago
C) A validator property can be set to false to disable script tasks in the activiti-app.properties file.
upvoted 0 times
...
Mike
1 year ago
B) The capability 'script task allowed' can be removed from the capability group for users you want to prevent from using script tasks.
upvoted 0 times
...
Denise
1 year ago
A) No, this is a base task in the App Designer process editor and it cannot be disabled, you will need to restrict who has access to App Designer to create processes.
upvoted 0 times
...
...
Kayleigh
1 year ago
Ugh, why do we even have script tasks in the first place? Sounds like a security nightmare waiting to happen. I say we just get rid of the whole process editor and call it a day. Problem solved!
upvoted 0 times
Odette
1 year ago
C) A validator property can be set to false to disable script tasks in the activiti-app.properties file.
upvoted 0 times
...
Micaela
1 year ago
B) I agree, script tasks can be risky. But there are ways to control who can use them.
upvoted 0 times
...
Shoshana
1 year ago
A) The capability 'script task allowed' can be removed from the capability group for users you want to prevent from using script tasks.
upvoted 0 times
...
...
Terrilyn
1 year ago
D sounds like a good option if you're syncing users from an external source. Modifying the LDAP config to prevent script tasks is a nice touch. Keeps things nice and secure without too much hassle.
upvoted 0 times
Margot
1 year ago
Modifying the LDAP config to prevent script tasks is a nice touch. Keeps things nice and secure without too much hassle.
upvoted 0 times
...
Claudio
1 year ago
D sounds like a good option if you're syncing users from an external source.
upvoted 0 times
...
...
Norah
1 year ago
The correct answer is B. Removing the 'script task allowed' capability from user groups is the way to go. Gotta keep that process editor on lockdown, you know?
upvoted 0 times
...
Xuan
1 year ago
But what if we need script tasks for some processes? Would restricting access to App Designer be too limiting?
upvoted 0 times
...
Lajuana
1 year ago
Hmm, I'm not sure if I should be concerned about this security risk. I mean, who would even want to use script tasks for malicious purposes? It's not like we're running a top-secret government agency or anything.
upvoted 0 times
Vanna
1 year ago
D) If you synchronize in users from external, you can modify configuration in the activiti-ldap.properties to prevent users from using script tasks 'ldap.synchronization.scripttask=false'.
upvoted 0 times
...
Latia
1 year ago
C) A validator property can be set to false to disable script tasks in the activiti-app.properties file.
upvoted 0 times
...
Carey
1 year ago
B) The capability 'script task allowed' can be removed from the capability group for users you want to prevent from using script tasks.
upvoted 0 times
...
Brent
1 year ago
A) No, this is a base task in the App Designer process editor and it cannot be disabled, you will need to restrict who has access to App Designer to create processes.
upvoted 0 times
...
...
Natalie
1 year ago
I agree with Colette, removing the capability for certain users seems like a secure approach.
upvoted 0 times
...
Colette
1 year ago
I think option B sounds like a good solution to prevent script tasks.
upvoted 0 times
...

Save Cancel