Administrator’s Guide
Table Of Contents
- Administrator’s Guide
- Contents
- QuickTime Streaming
- Getting Started
- Managing Your Streaming Server
- User Interface
- Working With Streaming Server Admin
- Viewing Streaming Status
- Starting or Stopping Streaming Service
- Working With Connected Users
- Changing Server Settings
- Controlling QuickTime Broadcaster Remotely
- Working With General Settings
- Working With Port Settings
- Working With Log Settings
- Viewing Error Logs and Access History
- Media
- About Instant-On Streaming
- Preparing Prerecorded Media
- Preparing Audio
- Streaming Media Files With Multiple Sources
- Streaming File Formats Like .avi, .text, and .wav
- Exporting a QuickTime Movie as a Hinted Movie
- Improving the Performance of Hinted Movies
- Session Description Protocol (SDP) Files
- Streaming Live Media
- Viewing Streamed Media From a Client Computer
- Setting Up a Web Page With Streamed Media
- Creating Links to MP3 Playlists
- Bandwidth Considerations
- Playlists
- Relays
- Security
- Resetting the Streaming Server Admin User Name and Password
- Controlling Access to Streamed Media
- Creating an Access File
- What Clients Need to Access Protected Media
- Adding User Accounts and Passwords
- Adding or Deleting Groups
- Making Changes to the User or Group File
- Installing SSL
- Using Automatic Unicast (Announce) With QTSS or DSS on a Separate Computer
- Executing a Command With sudo
- Streaming on Port 80
- Firewalls and Networks With Address Translation
- Problems
- Streaming Server Admin Is Not Responding
- The Server Doesn’t Start Up or Quits Unexpectedly
- The Streaming Server Computer Crashes or Is Restarted
- Media Files Do Not Stream Properly
- Streaming Performance Seems Slow
- Users Can’t Connect to Your Broadcast
- Users See Error Messages While Streaming Media
- Users Can’t See Live Streamed Media
- You’re Having Problems With Playlists
- Advanced
- How do I bind the Streaming Server Admin computer to a single IP address if my machine is multiho...
- How do I bind QTSS or DSS to a single IP address if my machine is multihomed?
- How do I kill and restart the QuickTime Streaming Server processes in Mac OS X Server?
- How do I kill and restart Streaming Server Admin processes in Mac OS X Server?
- How do I get QTSS to re-read its preferences without killing or restarting the server?
- How do I configure QTSS to host streams from multiple user media directories?
- User Interface
- Setup Example
- Glossary
- Index
40 Chapter 2
Controlling Access to Streamed Media
You can set up authentication to control client access to streamed media files. Two schemes
of authentication are supported: basic and digest. By default, the server uses the more
secure digest authentication.
You can also control playlist access and administrator access to your streaming server.
Authentication does not control access to media streamed from a relay server. The
administrator of the relay server must set up authentication for relayed media.
The ability to manage user access is built into the streaming server, so it is always enabled.
For access control to work, an access file must be present in the directory you selected as
your Media Directory. If an access file is not present in the streaming server media directory,
all clients are allowed access to the media in the directory.
To set up access control:
1 Use the qtpasswd command-line utility to create new user accounts with passwords.
2 Create an access file and place it in the media directory that you want to protect.
3 If you want to disable authentication for a media directory, remove the access file (called
qtaccess) or rename it (for example, qtaccess.disabled).
Creating an Access File
An access file is a text file called qtaccess that contains information about users and groups
who are authorized to view media in the directory in which the access file is stored. The
directory you use to store streamed media can contain other directories, and each directory
can have its own access file. When a user tries to view a media file, the server checks for an
access file to see whether the user is authorized to view the media. The server looks first in
the directory where the media file is located. If an access file is not found, it looks in the
enclosing directory. The first access file that’s found is used to determine whether the user is
authorized to view the media file.
The access file for the streaming server works like the Apache web server access file.
You can create an access file with any text editor. The filename must be qtaccess and the file
can contain some or all of the following information:
AuthName <message>
AuthUserFile <user filename>
AuthGroupFile <group filename>
require user <username1> <username2>
require group <groupname1> <groupname2>
require valid-user
require any-user
LL0329.book Page 40 Wednesday, November 20, 2002 2:09 PM