Appian Data to be accessed by non-apian users

I have a requirement where a non-Appian user needs to access data in Appian system either through SAIL form or in any other way and provide his/her inputs against the each field of Appian data which I need to capture
back into Appian system. I have studied about Embedded Interface but as per my understanding it also requires to enter Appian credentials for accessing the Embedded Interface. Can anyone suggest me the best approach for achieving this requirement. Thanks in Advance

  Discussion posts and replies are publicly visible

Parents
  • 0
    Certified Lead Developer

    Like the others replying to this thread I don't see the benefit to having them not be Appian users, especially since if I understant licensing correctly there's no additional charge for the extra users.

    I do however, see significant detriment to attempting to allow non-users access to Appian system and data.  Appian is very secure against SQL injection and cross-site scripts and other attacks.  Other interfaces might not be as secure, and adding another layer adds more ways for problems (not only hackers but most likely hackers) to get in.

    How are you going to configure security on the system the users DO have access to and configure security on the Appian process models that system is going to connect to?  If there's a problem with this thing you built, is the problem in the external interface, in the Appian, or in the connection?  Can you afford supporting all 3?  If you made them Appian users, you'd only need to support the one system and they'd already have only the correct permissions at no additional cost.  Why wouldn't you make them Appian users?

Reply
  • 0
    Certified Lead Developer

    Like the others replying to this thread I don't see the benefit to having them not be Appian users, especially since if I understant licensing correctly there's no additional charge for the extra users.

    I do however, see significant detriment to attempting to allow non-users access to Appian system and data.  Appian is very secure against SQL injection and cross-site scripts and other attacks.  Other interfaces might not be as secure, and adding another layer adds more ways for problems (not only hackers but most likely hackers) to get in.

    How are you going to configure security on the system the users DO have access to and configure security on the Appian process models that system is going to connect to?  If there's a problem with this thing you built, is the problem in the external interface, in the Appian, or in the connection?  Can you afford supporting all 3?  If you made them Appian users, you'd only need to support the one system and they'd already have only the correct permissions at no additional cost.  Why wouldn't you make them Appian users?

Children