Creating ACLs for Directory Services Based on Digest Authentication

The file authentication database also supports a file format suitable for use with Digest authentication, per RFC 2617. A hash based on the password and realm is stored. Clear text passwords are not maintained.

To Create ACLs for Directory Services Based on Digest Authentication

1. Access the Server Manager for the server instance.

2. On the Preferences tab, click the Administer Access Control link.

3. Select the ACL file from the drop-down list, and click Edit.

4. In the Access Control Rules For page, click the Users/Groups link for the ACL you want to edit.

   The User/Group page is displayed in the lower frame.

5. From the drop-down list under Authentication Database, specify the digest database.

6. Click Update, and then click Submit to save your changes.

   When you set an ACL against a Digest authentication-based file authentication database, the dbswitch.conf file is updated with an ACL entry, such as the sample entry below.

   version 3.0;acl "default";authenticate (user) {prompt = "filerealm"; database = "mydigestfile";method = "digest";}; deny (all) user = "anyone"; allow (all) user = "all";