Lotus Domino Administrator 8 Help - Setting up Internet/intranet clients for anonymous access

SECURITY

Setting up Internet/intranet clients for anonymous access
To set up Internet/intranet clients for anonymous access, you either set up the Internet Site or the server for anonymous access, and then set up database ACLs to include the entry "Anonymous." The anonymous setting in the Internet Site document (or Server document) overrides individual database ACLs for anonymous users -- for example, if the database ACL includes an Anonymous entry but the setting in the Internet Site document does not allow anonymous access to the server, clients do not have anonymous access. If you do not allow anonymous access and a user tries to access the server anonymously, the user is prompted to authenticate.

Tip For strategic databases on the IBM® Lotus® Domino™ server -- such as the Domino Directory -- set Anonymous to No Access.

To enable anonymous access for Internet/intranet clients in Internet Site documents

1. From the Domino Administrator, click Configuration - Web - Internet Sites.

2. In the Internet Sites view, select the Internet Site document for which you want to enable anonymous access.

Note

You cannot enable anonymous access for IMAP and POP3 Internet Site documents.

3. In the Internet Site document, click Security.

If you want to allow clients to use anonymous access when they connect using TCP, select Yes in the Anonymous field in the TCP Authentication section.
If you set up SSL on the server and you want to allow clients to use anonymous access when they connect using SSL, select Yes in the Anonymous field in the SSL Authentication section.

4. Save and close the document.

To enable anonymous access for Internet/intranet clients in the Server document

1. From the Domino Administrator, click Configuration, and open the Server document.

2. Click Ports - Internet Ports. This displays four tabs: Web, Directory, Mail, and IIOP. Each tab lists protocols appropriate for its name -- for example, the Web tab lists HTTP/HTTPS and the Mail tab lists IMAP, POP, and SMTP.

3. Click the tab that lists the protocol for which you want to allow anonymous access. For each protocol, do the following:

If you want to allow clients anonymous access when they connect using TCP/IP, select Yes in the Anonymous field in the TCP/IP section.
If you set up SSL on the server and you want to allow clients anonymous access when they connect using SSL, select Yes in the Anonymous field in the SSL section.

4. Save and close the document.

5. Restart the Internet protocol that you modified.

To edit database ACLs for anonymous access

In the ACL of each database on the server for which you want to enable anonymous access, do the following:

1. Create an entry named Anonymous. If you don’t add Anonymous as an entry in the ACL, users and servers who access the server anonymously get -Default- access.

2. Assign the appropriate access level -- typically Reader access.

3. Leave user type set to Unspecified.

For more information, see Configuring a database ACL.

For information on setting up SSL on a server, see Setting up SSL on a Domino server.

See also

Anonymous Internet/intranet access

Setting up SSL on a Domino server

Using realm documents in Domino Web Access

Glossary

Feedback on Help or Product Usability?

Help on Help

All Help Contents

Glossary