Security

Guest User

The guest user controls how users who have not authenticated are processed on the web server. When a user has not provided credentials they will run in Guest Mode. You can decided whether you wish to give guest complete, partial or no access to your website.

Allow Anonymous Access

This option indicates that Guest users are permitted to access your website. When this option is disabled, all users must provide user credentials before they are permitted to enter.

Use Perceptive Enterprise Search managed anonymous user account (ISYSGuest_Machine)

When Guest Mode is enabled, Perceptive Enterprise Search needs a username and password to use to represent the guest user (as no username is provided by the user). Perceptive Enterprise Search automatically creates and manages a user account on the web server that has minimal permissions. This account is ideal to use as the Guest Account.

When running in non-managed mode, you must provide credentials for a user account that Perceptive Enterprise Search will use to represent the user.

Username

Specifies the username for the non-managed account to use for the guest user.

Windows Domain

Specifies the domain (if required) for the non-managed account to use for the guest user.

Password

Specifies the password for the non-managed account to use for the guest user. Passwords cannot contain semicolons (;).

Authentication and Access Control

Perceptive Enterprise Search supports multiple authentication schemes and challenge mechanisms. Each website can be configured with different security settings depending on your requirements.

Authentication Scheme

The authentication scheme indicates the security system that will be used to authenticate and verify permissions of each user request. You may select from one of the following schemes:

Windows
The most common system. Perceptive Enterprise Search simply utilizes the security settings provided on Windows operating system. Perceptive Enterprise Search will automatically adhere to any permissions set on files, folders or other resources.

Apache
The Apache option uses ".htaccess" files to control access to the web server and its directories. The presence of a ".htaccess" file will restrict access to the directory in which it resides. See Apache (.htaccess) Security for more details on creating ".htaccess" files.

Hosted
The Hosted option is used when Perceptive Enterprise Search is being "hosted" within IIS (see Integrating with IIS ). This instructs Perceptive Enterprise Search that IIS has already handled the security and that no action is required to challenge the user for credentials. Perceptive Enterprise Search will use the credentials collected by IIS.

Authentication Challenge Mechanism

Perceptive Enterprise Search supports collecting user credentials in two ways, Basic and Forms.

Basic is a web browser level challenge mechanism supported in all browsers where the web browser will present the user with a dialog to enter their credentials.

Forms is available on modern web browsers. It allows you to design the login page using standard HTML, the login details are collected with the user being presented with a token that grants them access to the website.

Security Realm

Specifies the prompt that is shown in the login dialog when using Basic authentication.

Windows Domain

Specifies the default domain to use when using Windows security.

Forms Login Page

Specifies the login page to use for user authentication when and running in "Forms" mode.