RSA Security SILVERSTREAM 3.75 User Manual
Page 7
D. Protect SilverStream resources
SilverStream resources are protected via Clear Trust by proxying content through the IIS server running
both the RSA ClearTrust IIS web plug-in and the SilverStream IIS WSI module. Because of this, you will
need to secure the SilverStream server so that users cannot connect directly to it. This can be done from
a network topology standpoint, firewall rules or simply via SilverStream configuration parameters and
user/group permissions.
A typical scenario would be to assign Read (design-time) access and Write access to the Developers
group, Set Permissions access to the Administrators group, and Execute access to both the Developers
group and the authenticated WSI user defined in AgWSI.conf file.
Also, from the SilverStream Console > Security > Server Security, check the boxes ‘Require user
authentication’ and ‘Disable HTML directory listing’:
Page: 7