Table of Contents
Advertisement
What Is Access Control?
The following dialog appears when users authenticate themselves to the server:
Figure 8-1
After clicking OK, the user will see:
•
The Server Administration page, if authenticated to access Enterprise
Application Server
•
The file or directory listing requested, if logging in to a web site
•
A message denying access if the username or password was invalid
You can customize the access denied message that unauthorized users receive in
the Access Denied Response page.
SSL Authentication
The server can confirm users' identities with security certificates in two ways:
•
Using the information in the client certificate as proof of identity
•
Verifying a client certificate published in an LDAP directory (additional)
When you set the server to use certificate information for authenticating the client,
the server:
•
Checks first if the certificate is from a trusted CA. If not, the authentication fails
and the transaction is ended. To learn how to turn on client authentication, see
"Requiring Client Authentication," on page 119.
•
Maps the certificate to a user's entry using the
certificate is from a trusted certificate authority (CA). To learn how to set up
the certificate mapping file see "Using the certmap.conf File" on page 122.
•
Checks the ACL rules specified for that user if the certificate maps correctly.
Even if the certificate maps correctly, ACL rules can deny the user access.
162
Netscape Enterprise Server Administrator's Guide • November 2001
Example of Username and Password Prompt
file, if the
certmap.conf
Advertisement
Table of Contents
