11-18-2013 09:06 AM
I am wondering if it is possible to password protect internet access to act for web?
INO, going to http://mywebsite/apfw gets you right into our act login. There is a username and pwd, but is there any way to protect this better than that? Maybe this is more of a networking question than an act question...
11-18-2013 12:23 PM
11-18-2013 08:20 PM
Perhaps some explanation is useful:
If the concern is that people could use simple and hence insecure passwords, you could enforce a password policy through the normal procedure in Act! [Tools | Password Preferences], that is probably the simplist and is effective. You could as Mike suggest enforce Windows authentication, and hence have two layers of logon or perhaps people from only known IP addresses can gain access.
If the concern is about security of data (i.e. the bitstream) you could enable SSL and create/buy a certifcate. However APFW is quite safe as only the aspx pages are exposed, not folders.
11-19-2013 06:41 AM
11-19-2013 08:36 AM
11-20-2013 05:58 AM
we have a Hardware Firewall with Http proxy that protects our Act for web instances,
and with this you can make sure that non supported URL are not forwarded, and if needed, you can let your user auth him self via the Firewall, and only if he did this, he can then access the Act for Web Website.
if you want to know more, give me a call and i will be more then happy to explain more
ACC since 1995