Restrict Access to Your Web Pages

How to:

• Access the MCIT webserver
• Name your files and folders
• Restrict access to your pages
• Send e-mail from a web form
• Search your Site
• See how often your page is accessed

Neat tricks:

• Display "Last Update" automatically
• Include one file in another
• Link to a UM Directory (X.500) entry

More:

• WWW@UMHS FAQs

Restriction by client location

Access to pages can be restricted based on where the machine running the web browser is located. The basic categories are Internal (also known as "the intranet"), meaning "on the UM Campus (Note: as of 9/27/02, access to internal pages is limited to UMHS workstations) or dialing into a UMHS modem" , and External meaning "everywhere else".

To make a web page viewable only by those using UMHS workstations (which includes those dialing into the UMHS dedicated dial-in service but NOT those using UM dial-in services), you must place your HTML file in your project directory within the "i" directory on the MED-INFO server. The resulting URL for your file will be http://www.med.umich.edu/i/yourdirectory/yourfile.htm. Note that this means that anyone at such a workstation can access these internal pages; a signon and password is not required (other than when initially dialing into the UMHS modem), so this method should not be used to protect information that is very sensitive such as patient information or social security numbers.

To make a web page viewable only by those using UM workstations (which includes those dialing into the UMHS dedicated dial-in service but NOT those using UM dial-in services), you must place your HTML file in your project directory within the "u" directory on the MED-INFO server. The resulting URL for your file will be http://www.med.umich.edu/u/yourdirectory/yourfile.htm. Note that this means that anyone at such a workstation can access these internal pages; a signon and password is not required (other than when initially dialing into the UMHS modem), so this method should not be used to protect information that is very sensitive such as patient information or social security numbers.

If you don't have access to the "i" or "u" directory on MED-INFO or can't find your assigned project directory in the "i" directory, contact umhsweb.accounts@umich.edu.

Restriction by Generic I.D. and Password

Restriction by Uniqnames and Kerberos Passwords

MCIT currently doesn't provide this service for files stored on its web servers, but if you want this capability you have at least two options:

• Information Technology Central Services' web services. (You can continue to keep any unrestricted pages on MCIT webservers.) See ITD's document Restrict Access to Web Pages Using umich uniqnames and Kerberos Passwords for more information.
• U-M's SiteMaker system offers the ability to restrict access to websites by Uniqname and Kerberos password, and also by user-chosen IDs and passwords (useful when you'd like people outside U-M to be able to access restricted portions of your site). Again, you can continue to keep any unrestricted pages on MCIT webservers.