Administration Server Access Control

You must designate a realm that defines the server administrators; by default, the realm name is serverAdmin, and the source of information for user name and password is HTPASSWD. The source of user information determines whether user list is created with HTPASSWD utility or from the user information on the system.

You must be root to change realm information for the Administration Server.

You need at least one administrator of the realm so that at least one user has the ability to change the realm itself.

Using the Default Realm

1. Create a user admin as the administrator in the serverAdmin realm:

   # htrealm add -r serverAdmin -u adminSetting password for the user admin. Password: Confirm Password:

2. Assign the user admin administrative privileges for the realm so that it can create other users later:

   # htrealm add -r serverAdmin -u admin -A

Creating a New Server Administration Realm

To use a different realm or to change the source of user information in serverAdmin, complete the following steps:

1. Delete the current serverAdmin definition:

   # htrealm delete -r serverAdmin

2. Create a new realm.

   The realm source can be HTPASSWD, or UNIXSYS.

   # htrealm add -r serverAdmin -s UNIXSYS

3. Name an existing realm user as the administrator of the realm. This user will have permission to delete or change the realm.

   # htrealm add -r serverAdmin -u userName -A

4. If you used a realm name other than serverAdmin, you'll need to replace the access control in /etc/http/access.conf with your realm name.

5. For detailed help on access.conf and htrealm, refer to the access.conf(4) and htrealm(1m) man pages.