8.8 Controlling Access to Search Results

Security settings let you manage access to indexed content by requiring users to authenticate to a server before seeing search result content.

QuickFinder Server depends on NetIQ eDirectory to authorize each search result for a particular user for those documents managed by eDirectory. This allows user privileges to entire indexes rather than to each search result, which improves the overall speed at which search results requiring authentication are returned to the user.

To configure rights-based search results:

  1. On the QuickFinder Server Manager Global Settings page, click Manage in the row of the virtual search server that you want to work with.

  2. Under Settings, click Security.

  3. In the Default search contexts field, specify the full context that your users share in the directory.

    Specifying the context here means that your users do not need to supply their fully qualified user IDs when logging in to QuickFinder.

    If User objects are stored in multiple containers, you can specify multiple contexts by separating them with carriage returns. For example:

    users.marketing.digitalairlines
    users.sales.digitalairlines
    users.support.digitalairlines
    
  4. Click Yes next to Check authorization by directory if you want QuickFinder to verify user rights to all files in a directory.

    QuickFinder allows access to all other files in any directory where the user has rights to at least one file. This method speeds up access rights checking because QuickFinder doesn’t need to check rights for each file returned in a set of search results.

  5. In the Authentication realm string field, specify the correct authentication realm string, which is typically shown in the Web browser’s login dialog box.

    If QuickFinder’s realm string matches your Web server’s realm string, users only need to log in once.

    If Apache is your Web server, refer to the Authentication, Authorization and Access Control document on the Apache.org Web site for more information.

  6. Select Yes next to Require https if you want to enable HTTPS for user connections.

    IMPORTANT:We recommend that you enable HTTPS by selecting Yes, which ensures that usernames and passwords are encrypted as they cross network wires.

  7. In the Auto-logout time field, specify a number (in minutes) when QuickFinder should log out a user.

    This option is a security feature. Sometimes, users walk away from their computers. Other users could then have access to their search results.

  8. (Optional) Select Disable auto-logout if you don’t want it used during rights-protected searches.

    We recommend that you enable this feature as an added protection for secure content.

  9. Click Apply Settings.