Administration Tool: Access Control Lists

Panel Description

Documentation Contents

/ Documentation Index

/ Glossary

/ Administration Tool Help

Purpose

Access control lists (ACL) enable you to control the users, groups, and computers that access your web pages and other server resources, such as services or servlets. Use Access Control Lists to add and delete access control lists, and to add or delete the users and groups they contain, for a given realm. (A security realm contains users and/or groups plus their associated access control lists).

Note: To enforce access control, you must first enable it in the Network Setup panel.

For information on the relationship between Users, Groups, Access Control Lists, and Realms in the Java Web Server, see Resource Protection online document.

Location of panel in Administration Tool:

Log In	-->		Service name	-->	Manage	-->	Security
							\|_ Access Control Lists

Fields

Realm
When you select a realm from the pull-down menu, the names of the associated access control lists appear in the ACL frame and the names of the associated groups appear in the Principal/Allowed frame.

certificateRealm - Used to protect resources for users who are authenticated using Secure Sockets Layer (SSL)
defaultRealm - Can be used for general management of users and groups
servletMgrRealm - Used exclusively for signed servlet support, which is used primarily by software publishers. Holds the X.509 certificates used to authenticate those publishers
UNIX - Lets the server use HTTP Basic authentication with users' UNIX passwords
NTRealm - Applies only to users in a Windows NT environment (only available in the Win32 version of this product)

Buttons

Add ACL
Remove ACL
For a selected realm, these buttons enable you to add or remove an access control list (ACL)

Add Permission
Remove Permission
For a selected realm, these buttons enable you to assign permissions to specific users or specific groups.

Procedures

To Display the ACLs in a Realm

To Create an Access Control List

To Remove an Access Control List

To Add a User, Group, or Computer to an Access Control List

To Allow Access to Files or Folders Only from a Specific Computer

To Delete a User, Group, or Computer From an Access Control List

To Completely Delete a User Account From a Realm

To Add Permissions for a Signed Servlet

To Add Permissions for an Unsigned Servlet

Top

java-server-feedback@java.sun.com