Version 1.1
User's Guide
Proxy Authentication: Verifying Proxy Users Previous | Next
Contents

In a shared environment, it may be desirable to restrict use of the WebDoubler proxy server to certain users. WebDoubler has a built-in proxy authentication module that is designed specifically to allow you to restrict access based on IP numbers or by username and password.

Restricting Access by IP Addresses

Restricting access based on IP address is used to limit proxy access based on the computer running the browser. For example, IP address authentication can be used to restrict use of your proxy server to computers on your local network.

The Proxy Authentication plug-in allows you to specify ranges of IP addresses that are permitted to access the Web through WebDoubler. Fortunately, IP addresses are usually assigned to organizations in blocks, and in many cases an entire network can be defined by a single IP address range. Even if the computers on your network have non-sequential addresses, specifying a number of ranges is quick and easy.

To add a range of allowed IP addresses:

Using WebDoubler's application interface:

  1. In the "Proxy Authentication" window in WebDoubler, click the "Add..." button in the "IP Addresses" section of the window.

  2. Type in the starting and ending addresses. You must enter the full IP address of the start and end of the range.

  3. Click OK.

  4. Make sure that the "Disallow Access Outside IP Ranges" checkbox is checked.

Using remote Web administration:

  1. Be sure "Access Control" is set to "Restrict WebDoubler Access...", and choose either "IP Addresses" or "IP Addresses and Users" from the pop-up menu. Click "Save Changes" if these options were not already selected.

  2. Click the "New IP Range..." button.

  3. Type in the starting and ending addresses. You must enter the full IP address of the start and end of the range.

  4. Click "Save Changes".

  5. Click the "Proxy Auth" link at the top of the page, and verify that the new range has been added to the list of IP Addresses.

Restricting Access to Only Authorized Users

Proxy Authentication can also be used to restrict access to defined users, based on usernames and passwords. In this case, each time users begin a Web browsing session they will be prompted to enter a username and password that you, as the server administrator, define.

User authentication can be useful when users need to use the proxy remotely and without a predefined IP address. Authenticating users also provides a way to give varying levels of access to different people. The Proxy Authentication plug-in allows you to assign both administration authorization (the ability to configure WebDoubler remotely using the Web administration interface) and PICS profiles to each individual user.

To add a new authorized user:

Using WebDoubler's application interface:

  1. In the "Proxy Authentication" window in WebDoubler, click the "Add..." button in the "Users" section of the window.

  2. Type in the username and password.

  3. If PICS profiles have been defined, and you would like to specify that a particular profile apply to the new user, select the profile from the "PICS Profile" pop-up. See the "PICS" chapter of this User's Guide for details.

  4. If the user should be able to access the WebDoubler Web administration interface, select "Administrator" from the "User Type" pop-up menu, otherwise select "User".

  5. Click OK.

  6. Make sure that the "Require Username Authentication" button is checked.

Using remote Web administration:

  1. Be sure "Access Control" is set to "Restrict WebDoubler Access...", and choose either "Users" or "IP Addresses and Users" from the pop-up menu. Click "Save Changes" if these options were not already selected.

  2. Click the "New User..." button.

  3. Type in the username and password.

  4. If the user should be able to access the WebDoubler Web administration interface, select "Permitted" from the "Admin Access" pop-up menu, otherwise select "Denied".

  5. If PICS profiles have been defined, and you would like to specify that a particular profile apply to the new user, select the profile from the "PICS Profile" pop-up. See the "PICS" chapter of this User's Guide for details.

  6. Click "Save Changes".

  7. Click the "Proxy Auth" link at the top of the page, and verify that the new user has been added to the list of defined users.

Copyright © 1999 Maxum Development Corporation
http://www.maxum.com/		 Previous | Next
Contents