Restricting Access Based on Security

You can configure SSL and non-SSL listen sockets for the same server instance. Restricting access based on security enables you to create protection for resources that should only be transmitted over a secure channel.

To Restrict Access Based on Security

1. Access the Server Manager for the server instance.

2. On the Preferences tab, click the Administer Access Control link.

3. Select the entire server from the drop-down list in the Select A Resource section, and click Edit.

4. Create a rule allowing read and execute rights to all.

   If a user wants to add, update, or delete a file or directory, this rule does not apply and the server searches for another rule that matches.

5. Create another rule denying write and delete rights to all.

6. Click the X link to create a customized expression.

7. Type ssl="on". For example:

   user = "anyone" and ssl="on"

8. Click Submit to save your changes.

   Any errors in the custom expression produce an error message. Make corrections and submit again.