Setup guide

ManualsBrandsATTO Technology ManualsComputer equipment2390D

141

142

143

144

145

146

147

148

149

150

Configure WiretapCentral

Setting Up User Access Control

Access control options

■ By default, no user name or password is needed to use WiretapCentral, and all jobs submitted from it to

Backburner are owned by the user apache. As a result, all users can perform operations on any

WiretapCentral job on the Backburner network, including suspending, activating, and deleting jobs

submitted by other users.

■ You can assign the generic user “apache” administrator privileges for Backburner. This allows all users

to manage and control all jobs on the Backburner network, including Burn jobs, for example.

■ For greater control, you use using the Apache server’s authentication mechanism on the root directory

of WiretapCentral, which requires users to submit a user name and password to access WiretapCentral.

Then WiretapCentral jobs on the Backburner network have specific user names associated with them.

Only the owner of a job can perform operations upon it. Optionally, you can give administrator privileges

to specific users so they can control Backburner jobs other than their own.

The first step in setting up user authentication is to password-protect the directory (and subdirectories)

from which the WiretapCentral Web page is served. Do this by adding standard server directives to the

main Apache configuration file.

1 Open for editing the main Apache configuration file, /etc/httpd/conf/httpd.conf (Linux) or

/etc/apache2/httpd.conf (OS X) and append this:

# WiretapCentral User Authentication Section

AuthType Basic

AuthName WireTapCentral

AuthUserFile /etc/httpd/auth/wiretapcentral.auth

require valid-user

</Limit>

</Directory>

2 Restart the Apache server for the changes to take effect.

■ Linux: in a terminal, as root: /etc/init.d/httpd restart

■ OS X: in a terminal type: sudo /usr/sbin/apachectl restart

3 Verify that password protected was successful by opening a browser and attempting to use

WiretapCentral: http://<hostname>/WiretapCentral. A pop-up should request credentials.

Step 2: create a password file containing user names and passwords.

1 Verify /etc/httpd/auth/wiretapcentral.auth (Linux) or /etc/apache2/auth/wiretapcentral.auth

(OS X) exists.

2 Use the Apache htpasswd command to add users to the wiretapcentral.auth file:

■ Linux: htpasswd -c /etc/httpd/auth/wiretapcentral.auth <username> <password>

■ OS X: htpasswd -c /etc/apache2/auth/wiretapcentral.auth <username> <password>

WARNING The -c option replaces any existing password file. Use this option for the first password only, if

wiretapcentral.auth is not already in place.

3 Optional: To delete an account type one of the following commands:

■ Linux: htpasswd -D /etc/httpd/auth/backburner.auth <username>

138 | Chapter 3 Networked processing