Show Contents / Index / Search

Controlling Access by User

From the User Access Control pane, you control access to the server by individual users. You can allow or deny access, or use a combination of allow and deny. For information about how the server handles allow and deny rules, see Using Allow and Deny Rules for Access Control.

You can add users to the list by specifying individual users, or use regular expressions to match multiple users.

Note: To specify a user that is a member of a Windows Active Directory domain, use either a single forward slash (/) or two backward slashes (\\) between the domain name and the user name. To specify a user defined on the local computer, omit the domain name, or use the local computer name as the domain name. To include a client host with the user name, use the format user@host.

Examples

The following configuration denies access to the user Joe, defined on the local computer, and the user Joe, in the Acme domain.

User name(s)

Access

Acme/Joe

Deny

Joe

Deny

 

The following configuration allows access to all members of the Acme domain, except Joe and Fred. Members of any other domain (including the local computer) are denied access.

User name(s)

Access

Acme/.*

Allow

Acme/Joe

Deny

Acme/Fred

Deny

 

The following configuration denies access to all users from the Suspect domain, including Fred. The user Fred matches two expressions, and the denied expression takes precedence. Users from any other domain (including the local computer) are allowed access.

Note: Without the final line, no users would be allowed access. This is because once any user is added to the Allow list, users are allowed access only if they match an allowed expression.

User name(s)

Access

Suspect/.*

Deny

Suspect/Fred

Allow

.*

Allow

Related Topics

Regular Expression Syntax

User Access Control Dialog Box

Controlling Access