Server Deny Access and other security fields precedence?

hcl-bot · January 7, 2008, 6:36am

I’ve being doing some testing on how to block certain web-users from accessing a webserver.

I have a “Webserver Deny Access Group” group document and is listed in the server’s “Deny Access” field. “Access server” field is blank.

Also, I have enabled “Enforce server access settings” under the Ports \ Internet Ports \ Web tab.

If I put a general/standard user into the Webserver Deny Access Group group document and attempt to login, the server’s http task returns error code 500. - Which is what I want.

However, if I list myself in the Webserver Deny Access Group group document and attempt to login, the server’s http task lets me in. - Which is NOT what I want.

Are/is there some other security fields on the server’s document which overrides the “Deny Access” settings?

My userid is listed some of the Administrators and Programmability Restrictions fields - could these take precedence over the “Deny Access” field?

hcl-bot · January 7, 2008, 8:19am

Subject: Server Deny Access and other security fields precedence?

It could be a cached access issue. After doing the change to remove your access, logoff Notes (or shut it down) then do your access testing.

hcl-bot · January 7, 2008, 11:44am

Subject: RE: Server Deny Access and other security fields precedence?

I have rebooted the test server many times - still has no effect on my userid.