Setting up Internet/intranet clients for anonymous access

To set up Internet/intranet clients for anonymous access, you either set up the Internet Site or the server for anonymous access, and then set up database ACLs to include the entry Anonymous.

About this task

The anonymous setting in the Internet Site document (or Server document) overrides individual database ACLs for anonymous users -- for example, if the database ACL includes an Anonymous entry but the setting in the Internet Site document does not allow anonymous access to the server, clients do not have anonymous access. If you do not allow anonymous access and a user tries to access the server anonymously, the user is prompted to authenticate.

Tip: For strategic databases on the Domino® server, such as the Domino Directory, set Anonymous to No Access.

For information on using Realm document in HCL iNotes®, see the HCL iNotes administrator product documentation.

To enable anonymous access for Internet/intranet clients in Internet Site documents

Procedure

  1. From the Domino Administrator, click Configuration > Web > Internet Sites.
  2. In the Internet Sites view, select the Internet Site document for which you want to enable anonymous access.
    Note: You cannot enable anonymous access for IMAP and POP3 Internet Site documents.
  3. In the Internet Site document, click Security.
    • If you want to allow clients to use anonymous access when they connect using TCP, select Yes in the Anonymous field in the TCP Authentication section.
    • If you set up SSL on the server and you want to allow clients to use anonymous access when they connect using SSL, select Yes in the Anonymous field in the SSL Authentication section.
  4. Save and close the document.

To enable anonymous access for Internet/intranet clients in the Server document

Procedure

  1. From the Domino Administrator, click Configuration, and open the Server document.
  2. Click Ports > Internet Ports. This displays four tabs: Web, Directory, Mail, and IIOP. Each tab lists protocols appropriate for its name -- for example, the Web tab lists HTTP/HTTPS and the Mail tab lists IMAP, POP, and SMTP.
  3. Click the tab that lists the protocol for which you want to allow anonymous access. For each protocol, do the following:
    • If you want to allow clients anonymous access when they connect using TCP/IP, select Yes in the Anonymous field in the TCP/IP section.
    • If you set up SSL on the server and you want to allow clients anonymous access when they connect using SSL, select Yes in the Anonymous field in the SSL section.
  4. Save and close the document.
  5. Restart the Internet protocol that you modified.

To edit database ACLs for anonymous access

About this task

In the ACL of each database on the server for which you want to enable anonymous access, do the following:

Procedure

  1. Create an entry named Anonymous. If you don't add Anonymous as an entry in the ACL, users and servers who access the server anonymously get -Default- access.
  2. Assign the appropriate access level -- typically Reader access.
  3. Leave user type set to Unspecified.