Sun ONE logo      Previous      Contents      Index      Next     

Sun ONE Web Server 6.1 Administrator's Guide

The Preferences Tab

The Preferences tab contains the following pages:

The Shut Down Page

The Shut Down page allows you to stop the Administration Server. To start the server again, restart the service or use the icon in the program manager for Windows, or type ./start from the server_root/https-admserv directory for UNIX/Linux.

The following element is displayed:

Shut Down the Administration Server! Shuts down the Administration Server.

Help. Displays online help.

The Edit Listen Sockets Page

Before the server can process a request, it must accept the request via a listen socket, then direct the request to the correct virtual server. This page allows you to edit listen socket settings.

If you are accessing this page from the Server Manager, see The Edit Listen Socket Page in the Server Manager section.

For more information, see Editing Listen Socket Settings and Listen Sockets.

The following elements are displayed:

New. Click to create a new listen socket.

Delete. To delete more than one listen sockets, check the corresponding check boxes, and click OK.

Listen Socket ID. The internal name for the listen socket. Used to define the listen socket(s) a virtual server is bound to. Click to edit the properties of the listen socket in The Edit Listen Socket Page.

IP Address. The IP address of the listen socket. Can be in dotted-pair or IPv6 notation. Can also be 0.0.0.0, any, or ANY or INADDR_ANY (all IP addresses). Configuring an SSL listen socket to listen on 0.0.0.0 is required if more than one virtual server is configured to it.

Port. The port number to create the listen socket on. Legal values are 1 - 65535. On UNIX, creating sockets that listen on ports 1 - 1024 requires superuser privileges. Configuring an SSL listen socket to listen on port 443 is recommended.

Security. Displays whether security is enabled or disabled for the listen socket.

Default Virtual Server ID. The virtual server for this listen socket.

OK. Saves your changes.

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

The Server Settings Page

On UNIX/Linux systems, you can use the Server Settings page to change the Administration Server user name.

The following elements are displayed:

Admin Server User. Specifies the user name under which the server runs. The server user should have restricted access to your system resources. You can often use a user named nobody in this situation. On some systems, however, nobody is not a valid user name. You may not want to give the user nobody group access to all files. If you do not use nobody, create a new UNIX/Linux user, such as adm, to be the server user.

On Windows, to change the user which the server runs as, use the Services item in the Control Panel.

OK. Saves your entry.

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

The Superuser Access Control Page

The Superuser Access Control page allows you to configure superuser access for the Administration Server. These settings affect only the superuser account. If the Administration Server uses distributed administration, you must set up access control for the administrators using Restrict Access link under the Global Settings tab.

For more information, see Changing the Superuser Settings.

The following elements are displayed:

Hostnames to allow. Allows the specified host name to access the Administration Server. You can use wildcard patterns to match multiple systems in a domain. For example, *sun.com matches a.sun.com and a.corp.sun.com. You can list multiple hosts by separating them with commas. Using host names is flexible; if a system’s IP address changes, you will not need to update the server.

IP Addresses to allow. Specifies the IP address to match any host not explicitly defined. The access control for the most complete match will be used. You can also type wildcard patterns. For example, 198.95.* matches 198.95.11.6 and 198.95.11.2. You can separate IP addresses by using commas. Using IP addresses is reliable; if a DNS lookup fails for the connected client, host name restriction cannot be used.

Authentication user name. Specifies the user name of the “superuser” server administrator. (This is the user name you entered during installation.) Only this user name can be used to log in to the Administration Server. This information is stored in the admpw file.See Changing the Superuser Settings for more information.

Authentication Password. Specifies the password of the administrator. The password can have up to 8 characters and can include any character other than control characters. If you leave the password field blank, the password remains unchanged.

Authentication Password (again). Confirms the password specified in the Authentication Password field. If what you enter is different from what you entered in the Password field, you will be prompted to try again.

Caution

If you use Netscape Directory Server to manage users and groups, you need to update the superuser entry in the directory before you change the user name or password in this page. If you do not update the directory first, you will not be able to access the Users and Groups pages in the Administration Server. To fix this, you must either access the Administration Server with an administrator account that does have access to the directory or update the directory using Netscape Directory Server’s administration server or configuration files.

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

The Distributed Administration Page

The Distributed Administration page allows you to configure your servers to let multiple administrators change specific parts of the server.

Note

The default directory service should be LDAP for distributed administration to work.

For more information, see Allowing Multiple Administrators.

The following elements are displayed:

Activate distributed administration. Enables distributed administration.

Administrator group. Allows the specified group of administrators to bypass the Administration Server and go directly to the Server Manager for a specific server. Users in the administrator group have full access to the Administration Server, but this access can limited using access control. A user in the administrator group can make changes that affect other users, such as adding users or changing access control.

Caution

Once you create an access control list, the distributed administration group is added to that list. If you change the name of the administrator group, you must manually edit the access control list to change the group it references.

OK. Saves your entries.

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

The View Access Log Page

If you are accessing this page from the Server Manager, see The View Access Log Page in the Server Manager section.

If you are accessing this page from the Virtual Server Manager, see The View Access Log Page in the Virtual Server Manager section.

The View Access Log page allows you to configure a customized view of the information about requests to the server and the responses from the server.

For more information, see the following sections:

The following elements are displayed:

Number of entries. Specifies the number of entries to retrieve (starting with the most recent).

Only show entries with. Specifies a string or a character to filter the log entries. Case is important; the case of the string or character specified in this field must match the case of the entry in the access log. For example, if you want to see only access log entries that contain POST, type “POST.”

OK. Displays the log entries in the lower section of this page.

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

Last number accesses to access. Displays the access log entries with the parameters specified in the upper section of this page.

The View Error Log Page

If you are accessing this page from the Server Manager, see The View Error Log Page in the Server Manager section.

If you are accessing this page from the Virtual Server Manager, see The View Error Log Page in the Virtual Server Manager section.

The View Error Log allows you to configure a customized view of the errors the server has encountered as well as the informational messages about the server, such as when the server was started and who has tried unsuccessfully to log in to the server.

For more information, see the following sections:

The following elements are displayed:

Number of errors to view? Specifies the number of entries to retrieve (starting with the most recent).

Only show entries with. Specifies a string or a character to filter the log entries. Case is important; the case of the string or character specified in this field must match the case of the entry in the error log. For example, if you want to see only those error messages that contain warning, type “warning.”

OK. Displays the log entries in the lower section of this page

Reset. Erases your changes and resets the elements in the page to the values they contained before your changes.

Help. Displays online help.

Last number errors. Displays the error log entries with the parameters specified in the upper section of this page.



Previous      Contents      Index      Next     

Copyright 2004 Sun Microsystems, Inc. All rights reserved.