Manualshelf

Specifications

ManualsBrandsApple ManualsNetwork CardMac OS X Server
31323334353637383940
Chapter 3 Creating and Managing Websites 39
Using Realms to Control Access
You can use realms to control access and provide security to locations or folders within a
website. Realms are locations at the URL or they are les in the folder that users can view.
If WebDAV is enabled, users with authoring privileges can also change content in the
realm. You set up the realms and specify the users and groups that have access to them.
When an assigned user or group possesses fewer permissions than the permissions
that have been assigned to user Everyone, that user or group is deleted upon a refresh.
This happens because the access assigned to Everyone preempts the access assigned
to specic users or groups with fewer permissions than those possessed by Everyone.
The greater permissions always take precedence.
Consequently, the list of assigned users and groups with fewer permissions are not
saved in the Realms pane upon refresh if their permissions are determined to be
preempted by the permissions assigned to Everyone. After the refresh the names are
no longer listed in the list on the right in the Realms pane. Also, for a brief period of
time, user Everyone will switch its displayed name to no-user.”
To use a realm to control website access:
1 Open Server Admin and connect to the server.
2 Click the triangle at the left of the server.
The list of services appears.
3 From the expanded Servers list, select Web.
4 Click Sites, then select the website in the list.
5 Click Realms below the websites list.
6 Click the Add (+) button to create a realm.
The realm is the part of the website users can access.
7 In the Realm Name eld, enter the realm name.
This is the name users see when they log in to the website.
8 From the Authentication pop-up menu, choose a method of authentication:
Basic authentication is on by default. Don’t use basic authentication for sensitive Â
data because it sends your password to the server unencrypted.
Digest authentication is more secure than basic authentication because it uses an Â
encrypted hash of your password.
Kerberos authentication is the most secure authentication. If you want Kerberos Â
authentication, you must join the server to a Kerberos realm.