I am setting up Openfire in conjuction with the Psi client. We will be running about 100 clients, 85 or so will be tier 0, 15 will be tier 1. We are trying to lock things down really tight, and I have a few questions for the experts.
Openfire is configured to look into Active Directory for Users and Groups, but I want to set it so that only people from tier 0 and teir 1 group can even connect to the server in the first place. Essentially I want two groups to run the show, if you’re not in either one of the groups, you can’t do anything. If a tier 0 agent logs in they should only be able to see the one group chat in their contacts, as well as all 15 of the teir 1 people. When a tier 1 agent logs in, they should see the one group chat, all of the teir 0 people and the teir 1 people in a seperate category.
I have set things up pretty well thus far, but my teir 1 agents can’t see anything in their contacts. I went to Users/Groups > Groups > and then searched for my teir 1 group. I then set the radio button to **enable **and put in the contact list group name of the teir 0 group, then checked the box “Share group with additional users” and selected the teir 1 group as well.
To have everyone see the one chat room I set up I went to Server > Client Management > Group Chat Bookmarks > and then created a new bookmark. The group chat address format is firstname.lastname@example.org. Then I checked “All Users”. Agents can still go to “Join"Groupchat” to connect to it, but I want the chat to appear in the contact list on first login.
Lastly, I’m concerned with the client in general. Once I install this software on an agent’s PC, what’s stopping them from connecting to a chat server outside of our network? Would I have to block connections to and from all of the servers in the drop down list?
I know this is a lot, but since we are a call center we absolutely have to tighten security as much as possible. Maybe I should try a different client? Any insight would be much appreciated.
Thank you for reading my post,