RSA Security 3.75 manual Protect SilverStream resources

Page 7

D. Protect SilverStream resources

SilverStream resources are protected via Clear Trust by proxying content through the IIS server running both the RSA ClearTrust IIS web plug-in and the SilverStream IIS WSI module. Because of this, you will need to secure the SilverStream server so that users cannot connect directly to it. This can be done from a network topology standpoint, firewall rules or simply via SilverStream configuration parameters and user/group permissions.

A typical scenario would be to assign Read (design-time) access and Write access to the Developers group, Set Permissions access to the Administrators group, and Execute access to both the Developers group and the authenticated WSI user defined in AgWSI.conf file.

Also, from the SilverStream Console > Security > Server Security, check the boxes ‘Require user authentication’ and ‘Disable HTML directory listing’:

Page: 7

Page 6 Page 8
Image 7
Page 6 Page 8
Contents Contact Information Partner InformationSales contact Support Contact File Name Destination Product RequirementsComponent DescriptionResource Authorization Process Product ConfigurationIntegration Overview Agisapif.dll AgWSIUser.exe Configure the WSI moduleAgWSI.conf Changed priority of ClearTrust Isapi Filter Install WSI modulePage Protect SilverStream resources Page Example ClearTrust Logon Servlet Certification Checklist for Application ServersDate Tested 01/31/02 Web/PresentationRequested URI http//webserver/SilverBooksCS/app Known Issues
Top Page Image Contents