Secure Network Account (SNA) - Recommended for Network Acquisition with SCIEX OS


Date: 06/03/2024
Categories: SCIEX OS

0 Votes
   Print    Rate Article:

For research use only. Not for use in diagnostic procedures.


Answer

Secure Network Account
 
In a secure environment where data is being acquired to a network folder, most users usually do not have delete rights for the destination folder. This can cause issues because SCIEX OS software requires delete access to successfully complete acquisition to a network folder.
The Secure Network Account (SNA) functionality supports network acquisition in all network acquisition scenario’s. The SNA account is only used for network wiff/wiff2 data transfer. It is used for the users who don't have write permission in destination network folder to be able to acquire and transfer data (wiff2 and wiff1 file) to the network folder succsefully. To enable this functionality, the laboratory administrator creates an account with Full control permission for the appropriate folders, and then specifies that account in the "Specify Credentials for Secure Network Account" in the Configuration\Projects part of the SCIEX OS software. The SCIEX OS software can then acquire data successfully, even for individuals who do not have the appropriate security rights.

The SNA must have Full control for:
  • The network root directory folder.
  • The SCIEX OS Data\NetworkBackup folder on the acquisition computer.
  • The SCIEX OS Data\TempData folder on the acquisition computer.
The SNA does not need to:
  • Belong to the Administrator group on the computer.
  • Be in the User Management database for the SCIEX OS software.
Additional advice not mandatory for SNA but strongly recommended for optimal configuration:
  • It is not advised to use a current Windows administrator user account as the SNA. If a current account linked to a specific person is used, there maybe access issues when that person then leaves the company and the account is disabled. The best practice is to set up a unique account with administrator privileges that is not linked to a particular individual. For example, NetworkSNA@ValidatedLabs.com and not JohnDoe@ValidatedLabs.com
  • Once a dedicated and unique SNA is set up, the password should be set to never expire by the end-user's IT department. This prevents a password change from interfering with data acquisition to a network share.
​​​​For lab user, customer need to grant read/write (r/w) permission to data root, project etc, and grant read only permission for data folder.

Follow the example below:
• DataRoot (r/w)
• Common-project-area (r/w)
• Project1 (r/w)
 → Acquisition Methods (r/w) or (can be read only, it also means that normal user can only read method and will not able to modify/save method)
 → Audit Data (r/w)
 → Batch (r/w)
 → Data (read only)
 → Optimization (r/w)
 → Project Information (r/w)
 → Quantitation Methods (r/w) or (can be read only, it also means that normal user can only read method and will not able to modify/save method)
 → Quantitation Results (r/w)

Where to enter the SNA in SCIEX OS ?

1) Select Configuration

image.png

2) Then click on "Projects" and on "Specify Credentials for Secure Network Account".

image.png

3) Enter the Account details and click OK

image.png

For more details about SNA and Network Acquisition, please check SCIEX OS Laboratory Directors Guide.