You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Apache Apache <ap...@hotmail.com> on 2003/04/21 08:29:55 UTC

[users@httpd] Access control to certain websites

Hi,

Currently all users in my company access the company's various Intranet
servers thru' the apache proxy server (ie. Apache 1.3.6) running on SunOS 
5.5.1. Is there a way to configure apache such that only certain group of 
people or certain person can only accessed certain Intranet
websites/webpages??? If yes, what needs to be configured or added in
apache???

Any info would be helpful and thanks in advance.



_________________________________________________________________
Send a fun phone greeting to your friend! 
http://www.msn.com.sg/mobile/fungreetings/


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Access control to certain websites

Posted by Adam Moffett <ad...@clarityconnect.com>.

>Hi,
>
>Currently all users in my company access the company's various Intranet
>servers thru' the apache proxy server (ie. Apache 1.3.6) running on 
>SunOS 5.5.1. Is there a way to configure apache such that only 
>certain group of people or certain person can only accessed certain 
>Intranet
>websites/webpages??? If yes, what needs to be configured or added in
>apache???
>
>Any info would be helpful and thanks in advance.

There're a lot of ways to do that.

You could restrict by IP's or host names like this:

<Location "http://some.host/some/url">
	Order deny,allow
	Deny from All
	Allow from some.other.host
	Allow from 10.5.5.152
</Location>

Or you could prompt for a username and password and only allow 
certain users access:

<Location "http://some.host/some/url">
	AuthType basic
	AuthName "Restricted area"
	AuthUserFile "/etc/httpd/webpasswords"
	require user tom dick harry
</Location>

And then you'd have to use the htpasswd utility to put users into the 
password file.  Since "require user" specifies users tom, dick, and 
harry; only those users will be allowed access.  You could change it 
to "require valid-user" to allow any authenticated user.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org