Controlling Access by User
From the User Access Control pane, you control access to the server by individual users. You can allow or deny access, or use a combination of allow and deny. For information about how the server handles allow and deny rules, see Using Allow and Deny Rules for Access Control.
You can add users to the list by specifying individual users, or use regular expressions to match multiple users.
Note: To specify a user that is a member of a Windows Active Directory domain, use either a single forward slash (/) or two backward slashes (\\) between the domain name and the user name. To specify a user defined on the local computer, omit the domain name, or use the local computer name as the domain name. To include a client host with the user name, use the format user@host.
The following configuration denies access to the user Joe, defined on the local computer, and the user Joe, in the Acme domain.
The following configuration allows access to all members of the Acme domain, except Joe and Fred. Members of any other domain (including the local computer) are denied access.
The following configuration denies access to all users from the Suspect domain, including Fred. The user Fred matches two expressions, and the denied expression takes precedence. Users from any other domain (including the local computer) are allowed access.
Note: Without the final line, no users would be allowed access. This is because once any user is added to the Allow list, users are allowed access only if they match an allowed expression.