Connection-Based Access Control

Directory Server enables you to use the host access control file hosts.allow and hosts.deny to specify the connection conditions to access the server. You can enable connection-based access control by using the dsconf command. Set the server property host-access-dir-path to the absolute path of the file system directory where the hosts.allow and hosts.deny files are located. See the server(5dsconf) and hosts_access(4) man pages for more information.

Connection-based access control can also be configured using ACIs. See ACI Bind Rules in Sun Java System Directory Server Enterprise Edition 6.3 Reference for background on ACI bind rules.

Previous: Chapter 4 Tuned for Performance
Next: New Password Policy