iTP Secure WebServer System Administrators Guide (Version 7.5+)
NOTE: The -safeguard option is recommended for use with RequireSecureTransport
because it is used with the non-secure basic authentication scheme that sends the
user name and password as radix64 encoded strings.
If the user enters a user name and password that matches one of the user name/password pairs
in the specified password file, the Web client is granted access to the server region specified in
the containing Region directive.
For example:
Region /recipes/secret {
RequirePassword "Secret Recipes" -userfile \
/home/data/passwords }
Administering Passwords
To administer the passwords contained in a server password file, you use the useradm utility
included with the server distribution. The useradm utility enables you to perform these tasks:
• “Checking the useradm Utility Version” (page 115)
• “Creating a New Password File” (page 115)
• “Adding a New User to a Password File” (page 115)
• “Deleting a User From a Password File” (page 116)
• “Changing a User's Password” (page 116)
The useradm utility is located in the /usr/tandem/webserver/bin directory.
Checking the useradm Utility Version
To check the utility version:
useradm -version
where:
-version
displays the useradm version
Creating a New Password File
To create a new password file:
useradm create [-digest] file-name
where:
-digest
specifies a digest-authentication format
file-name
is the name of the new password file
Adding a New User to a Password File
To add a new user to an existing password file:
useradm add file-name [ user-name]
[password]
where:
file-name
is the name of the password file
user-name
is the name of the user to be added
Controlling Access to the Server 115