The GM-X Menu subsystem provides the access, navigation and security foundation for all other GM-X subsystems.

Contact us

For end users, the Menu subsystem provides:

  • Secure logon and logoff
  • Password change
  • Retrieve password by email
  • Home Page, menu and help navigation
  • To-do list maintenance
  • Favorites maintenance
  • Message of the day (MOTD) display

For system administrators, the Menu subsystem provides:

  • Role maintenance
  • User maintenance
  • Option to define user IDs as email addresses
  • Password reset
  • Custom menu configuration
  • Message of the day (MOTD) maintenance
  • Help maintenance
  • Maintenance of system availability and shutdown schedules

Multi-organization

  • Supports single or multiple client organizations
  • Client organizations can trade with one another just as they trade with external parties
  • Internal users can be assigned to a single client organization
  • Supports internal super users providing shared services to all organizations

 Multi-language

  • Screens, reports and help can be translated into any language you choose
  • Each user may be assigned a language preference
  • Keeps all translatable data in any language, and many languages
  • Translatable data include names, descriptions, addresses and contacts

 Role-based access

  • Allows any number of suitable roles to be defined for the enterprise
  • Internal and external users are assigned to one or more of the available roles
  • Each role can perform only the tasks appropriate for the job function
  • Conforms to enterprise segregation of duties (SOD) policies
  • Affects the menu and navigation options available to each user (screen-level security)
  • Affects the fields that are visible to each user on screens and reports (field-level security)
  • Affects if visible fields are read-only, or read/write for each user

Standard security features

  • All users and services must authenticate themselves via user ID and encrypted password
  • Ability to temporarily disable user accounts, or restrict account validity to a date range
  • Configurable password format, length and rotation policies
  • Optional interactive password strength meter
  • Optional SSL/TLS (HTTPS) encryption configurable by screen or for the entire application
  • Optional single sign-on (SSO)
  • Optional two-factor authentication (TFA) or one-time password (OTP)
  • Configurable automatic user account de-activation after repeated logon failures
  • Ability to restrict access to authorized devices or during authorized time periods
  • Option to encrypt and store database access credentials outside the server root
  • Row-level security option
  • No enterprise data is ever displayed in the browser's address bar
  • Remains fully functional even when scripting is disabled as a security precaution
  • Hardened to prevent session fixation and hijacking, CSRF, code injection, SQL injection and XSS attacks