Back to list
May 04 2021

T47-2021 BIOVIA Pipeline Pilot: Important Security Notice

BIOVIA Pipeline Pilot

Dear Pipeline Pilot customer –

We wish to remind you of the potential for Pipeline Pilot to be installed in an insecure way. The default Pipeline Pilot installation can result in unauthorized access and usage, if you do not follow the security guidance in the Pipeline Pilot Administration Guide. In particular, untrusted persons or systems could access your Pipeline Pilot server if you are using default credentials for your admin user, or if you maintain ‘Any User Name’ as the authentication method. We strongly advise customers to follow these two steps to confirm that their installation is secure:

1. Ensure you are not using the default username and password on the Pipeline Pilot admin portal.
This can allow unauthorized access to the admin portal. If you have not changed it yet, follow these steps:

a. Log in to the Pipeline Pilot admin portal.

b. In Security / Users choose a new, strong password for the ‘scitegicadmin’ user

c. For additional security we recommend changing the default user name as well

d. You can find more details about admin accounts management in the Pipeline Pilot Admin Guide: Admin > Security > Support for Security Issues

2. Ensure that the Authentication Method is a limited and password protected option such as ‘Domain’, to prevent protocol executing by unauthorized users.

If you are still using the ‘Any User Name’ option for authentication, follow these steps:

a. Log in to the Pipeline Pilot admin portal.

b. In Security / Authentication, if the authentication method user directory is ‘Any User Name’, change this to another user directory option such as ‘Domain’.

c. If none of the directory options are appropriate for you, switch off the External user directory” option, and use only named users configured in the Security / Users page.

d. The next time a user attempts to sign into the Pipeline Pilot server, authentication will be subject to the rules you have defined.

e. You can find more details about authentication management in the Pipeline Pilot Administrator Help Center: Administrators > Security > Authentication

Please contact BIOVIA support with any questions or concerns.