SECURING


Setting up session-based name-and-password authentication

Setting up session-based name-and-password authentication is a multi-step process.

About this task

To set up single-server session-based name-and-password authentication for Web clients, you must complete three procedures.

1. Create a Web site document and enable it for session-based name-and-password authentication, or edit the Server document to require session authentication for Web clients.

2. Create a Person document for each user in the Domino® Directory on the Domino server and assign an Internet password to each user. It should be noted that users can be located instead in an external LDAP directory that is accessible to Domino through Directory Assistance.

3. Edit the database ACLs to give users access.

Parent topic: Session-based name-and-password authentication for Web clients

To enable single-server session-based authentication for Web Site documents

Procedure

1. From the Domino Administrator, click Configuration -> Web -> Internet Sites.

2. In the Internet Sites view, select the Web Site document for which you want to enable session authentication.

3. In the Web Site document, click Domino Web Engine and complete the following fields in the HTTP Sessions section of the tab.


4. Click Security, and enable name-and-password authentication for the TCP and for TLS (if using TLS).

5. Save the document.

To edit the Server document for single-server session-based name-and-password authentication

Procedure

1. From the Domino Administrator, click Configuration, and open the Server document.

2. Click Internet Protocols -> Domino Web Engine.

3. Complete the following fields in the HTTP Sessions section of the tab:


4. Click Ports -> Internet Ports -> Web, and enable name-and-password authentication for the TCP/IP port and for the TLS port (if using TLS).

5. Save and close the Server document.

To create Person documents for Web users

Procedure

1. In the Domino Directory, create a Person document for each Web user who needs to access the server. (You can also edit the Person document of an existing user.)

2. In each Person document, complete these fields, and then save the document:


What to do next

After you edit the Server document and create Person documents, edit the database ACL of each database to which you want to give users access.

Related concepts
Session-based name-and-password authentication for Web clients