Start by creating an ACL for the virtual server hr.acme.com .
Access the Server Manager and choose the Preferences tab.
Click the Restrict Access link.
Under the Option column, select the ACL file. We choose the default file in our example and click OK.
Select Pick a Resource and then specify the following wildcard pattern to control access to all files in the /hr/publish/manager directory :
Click the Edit Access Control button.
Check the “Access control is on” checkbox and click the New Line button.
Click on Deny in the second row of the Action column.
This opens the Allow /Deny page in the lower frame of Figure 3-8: Restricting Access Control
Click Allow, if not selected by default, and then click Update.
Click on “anyone” in the Users/Groups column, in the top frame.
Enter “manager” as the user you will allow access to, and keyfile1 as the authentication database, in the User/Group page that appears in the lower frame of Figure 3-9: Access Control for User and User Groups
Click Submit to store the new access control rules in the ACL file.
Click Apply Changes and save and apply the changes that you have made.
Once an ACL is set users accessing the site will be required to authenticate themselves before they are allowed access, as shown below: