SECURITY


Setting up Internet/intranet clients for anonymous access
To set up Internet/intranet clients for anonymous access, you either set up the Internet Site or the server for anonymous access, and then set up database ACLs to include the entry "Anonymous." The anonymous setting in the Internet Site document (or Server document) overrides individual database ACLs for anonymous users -- for example, if the database ACL includes an Anonymous entry but the setting in the Internet Site document does not allow anonymous access to the server, clients do not have anonymous access. If you do not allow anonymous access and a user tries to access the server anonymously, the user is prompted to authenticate.

Tip For strategic databases on the IBM® Lotus® Domino® server -- such as the Domino Directory -- set Anonymous to No Access.

To enable anonymous access for Internet/intranet clients in Internet Site documents

1. From the Domino Administrator, click Configuration - Web - Internet Sites.

2. In the Internet Sites view, select the Internet Site document for which you want to enable anonymous access.


3. In the Internet Site document, click Security. 4. Save and close the document.

To enable anonymous access for Internet/intranet clients in the Server document

1. From the Domino Administrator, click Configuration, and open the Server document.

2. Click Ports - Internet Ports. This displays four tabs: Web, Directory, Mail, and IIOP. Each tab lists protocols appropriate for its name -- for example, the Web tab lists HTTP/HTTPS and the Mail tab lists IMAP, POP, and SMTP.

3. Click the tab that lists the protocol for which you want to allow anonymous access. For each protocol, do the following:

4. Save and close the document.

5. Restart the Internet protocol that you modified.

To edit database ACLs for anonymous access

In the ACL of each database on the server for which you want to enable anonymous access, do the following:

1. Create an entry named Anonymous. If you don’t add Anonymous as an entry in the ACL, users and servers who access the server anonymously get -Default- access.

2. Assign the appropriate access level -- typically Reader access.

3. Leave user type set to Unspecified.

Related topics