About this task
IBM®
FileNet® Collaboration Services implements anonymous access
with a designated user that is used only for this purpose. The user must be a system-type user that
is not used by a real person. The user ID must not have any particular privileges on the object
store beyond what is given by the installation guide. This user's access control records determines
what level of access is given to anonymous users. So, choose a functional ID that is reserved for
this purpose and that does not have special access. The display name of the user that is used in
this role might appear in some supplemental user interfaces, so a user account or functional ID must
be chosen with a suitable display name that matches the purpose of this account, for example,
Anonymous User. Do not choose the administrative account ID. Follow these
steps to enable anonymous access
Procedure
-
Log in to the WebSphere® Application Server
Integrated Solutions Console that hosts your FileNet
server with the FileNet Collaboration Services
application.
-
Enable use of authentication data on unprotected URLs as follows:
-
Navigate to .
-
Make sure Authenticate only when the URI is protected is selected and
Use available authentication data when an unprotected URI is accessed also is
selected.
-
Modify security role mapping for the FileNet
Collaboration Services application as follows:
-
Continuing in the WebSphere Administration console,
navigate to .
-
Click Security role to user/group mapping.
-
Select the Authenticated option and then select Map Special
Subjects and Everyone.
-
Click OK to save your changes.
-
Install the authentication filter code as follows:
-
In WebSphere Administration console navigate to WebSphere Enterprise Applications.
-
Select the FileNet Collaboration Services option.
-
Click Update.
-
For Application update options, select the Replace, add, or
delete multiple files option.
-
Select local file system if you are running the browser on the
Deployment Manager node and then locate the auth_filter_patch.zip file in the
<connections_install_root>/xkit/filenetConfig/auth_filter_patch.zip
directory.
If the browser is not running on the Deployment Manager (DM) node, then select
remote file system and choose the DM file system, locating the
auth_filter_patch.zip file in the directory previously stated.
-
Click Next and OK to update the
application.
-
Click ,
-
Select the Anonymous role and enter the username and password of the
LDAP user who is designated for the anonymous access role.
-
Click Apply and then click OK to save.
-
Click Save.
-
Resynchronize nodes with the master configuration, refer to Synchronizing nodes.
-
Open the Administration Console for Content Platform Engine (ACCE) and expand the
Object Stores node on the side navigation tree.
-
Right-click ICObjectStore, the object you want to configure, and then
click Open.
-
Select Search, click New Object Store Search,
select Collaboration Configuration in the Class menu,
and then click Run.
A single result object displays after you select OK for any
warnings.
-
Click the object and then click Properties.
-
On the Properties tab, click the Property Value
cell for Download Count Anonymous User Ids, which displays a dropdown
menu.
-
Select Edit list, add the user into the list, and then select it from
the dropdown menu. The user must be the same user that you provided for the User RunAs
roles in the WebSphere Application Server
Integrated Solutions Console in step 2; however, the SID of the user must be provided instead of the
user name. To understand how SID values are created, refer to Generating SID
values.
-
Click Close.