Setting Up Access Control for All User Pages

Summary of Steps

1. Determine whether you want to enforce site security procedures for all user pages or set up default rules for all user pages.
2. Determine what access control records are required to implement how you want to control access to all user pages.
3. Create the initial ACCESS file.
4. Configure VM:Webgateway to use the initial ACCESS file.

Steps in Detail

1. Determine whether you want to enforce site security procedures for all user pages or set up default rules for all user pages.

   Determine which of the tasks listed below you want to do for all user pages:

   • Enforce security rules for data requested from user pages
   • Set default rules for data requested from user pages
   • Setting enforced and default rules for data requested from user pages
   • Enforce how VM:Webgateway authenticates web browser users requesting data stored in user pages
   • Enforce how VM:Webgateway determines group membership of web browser users requesting data stored in user pages

2. Determine what access control records are required to implement how you want to control access to all user pages.

3. Create the initial ACCESS file.

   Create a CMS file with the filetype ACCESS. The file must reside on a minidisk or SFS directory accessed by the VM:Webgateway SVM.

   Place access control records in the initial ACCESS file. VM:Webgateway evaluates the records in the initial ACCESS file before evaluating the access control records in the DIRMAP and ACCESS files for a user page.

4. Configure VM:Webgateway to use the initial ACCESS file.

   Specify the filename of the initial ACCESS file to VM:Webgateway by doing one of the following:

   • From a web browser, enter the filename of the initial ACCESS file on the Allow End Users to Serve Data configuration form.
   • From a VM userid, enter the CONFIG USERPAGES command with the ACCESS parameter.