DAF User Database Advanced Settings

Forward unfound DAF user to NT:
When checked, if a WEB user is not found in the DAF database, DAF will forward it to NT and the HTTP request will be accepted if the WEB user is a valid NT user.

If Account Expired redirect to URL

If a user is found in the DAF User Database but if the account is Expired and if a URL is specified in this field the request will be redirected toward the defined address.

If Account Disabled redirect to URL

If a user is found in the DAF User Database but if the account is Disabled and if a URL is specified in this field the request will be redirected toward the defined address.

Realm Information

Specify here the data that should be displayed as resource information in the popup authentication dialog box.

                 my domain info is the Realm Information

Concatenate to WEB user , Server IP Address:

With this option activated, the option "Forward unfound DAF user to NT" will not work properly because the NT user will also include the IP address.

When checked, DAF concatenates the IP address of the server receiving the request and the WEB user name. For example, if DAF receives a request for server 192.168.200.9 with user "john," user "192.168.200.9-john" will be looked up in the DAF database. The format is "X.Y.Z.W-webuser" (with a dash in the middle).

Important!
When this option is used, the user in the database must be stored with the IP address ("X.Y.Z.W-webuser"), and there must be one line per IP address and per user.

With this feature, you can set one password per IP address for one web user.

Concatenate to WEB users URL first directory:

This option is not available from DAF release 3.1a through 3.5b4. It is available with release 3.5 beta 5 and later.

The same is true with the IP address but with the first directory found in the URL.

For example, if DAF receives a request for URL "http://192.168.200.9/private/test.htm" with user "john," user "private-john" will be looked up in the DAF database. The format is "<first dir>-webuser" (with a dash in the middle).

With this feature, you can set one password per first directory for one web user.

Options "IP Address" and "First directory" may be used together.

Encrypt DAF Passwords in user database

If this option is Enabled DAF Passwords will be stored crypted in the DAF User Database.

Encrypt mapped NT Passwords in user database

If this option is Enabled mapped NT Passwords will be stored crypted in the DAF User Database.

Encryption Password

Specify in this field the password used to encrypt DAF and mapped NT Passwords.

Very Important Note!

• For an existing DAF User Database encryption features should be enabled with caution. Existing users information in the user database will remain uncrypted and will NOT be usable.
• The Encryption Password should be changed with caution. Existing users information in the user database will remain crypted with the previous encryption password and will NOT be usable with the new encryption password.
• When encryption features are enabled DAF Users MUST be managed with the Web User Manager which is the only tool capable to encrypt DAF and mapped NT Passwords.
• Make sure to remember the Encryption Password. If for some reason you need to reinstall DAF on a new server and if you can not remember the Encryption Password, your whole DAF User Database will remain unusable.

Impersonate with NT User

By default the "real" User Database will be accessed with the System NT account. In a few cases, it is necessary to use another NT account to access the user database. For example, this is required when the user list is a Text file or MS Access file located on a remote server. In such a case, specify here which NT account should be used.

Default mapped NT User

If specified, this NT user will be mapped (while processing each authentication) to all DAF users with no mapped NT user defined.

Last update: Friday, April 02, 1999 08:17