Re: Configure Basic Authentication on HTTP SERVER

[Pete Helgren <pete@xxxxxxxxxx>]

Gio,

Not to complicate things but are you interested in protecting a web site 
with basic auth or creating a web service that uses basic auth?  They 
are two different paths i think.

Pete Helgren
www.petesworkshop.com
CISSP - MSCM
GIAC Cloud Penetration Tester
AWS Certified Cloud Practitioner
Microsoft Certified: Azure Fundamentals

On 1/16/2026 3:00 PM, Brad Stone wrote:
> Sorry, I do all my HTTP server config creation by hand.  I don't use the
> "wizards".
>
> Dig into the docs and examples.  There are a lot online you can learn from.
>
> On Fri, Jan 16, 2026 at 2:39 PM gio.cot <gio.cot@xxxxxxxxxxx> wrote:
>
> > Hi Brad
> >
> > As premised,  i’m new in configure http server, my doubt is , as  in “IBM
> > Web Administration for I” i see “Create a New Web Service Server”, “Create
> > a New http Server” and “Create a New Application Server” (i used Create a
> > New http Server) the configuration that you showed,  is valid for all thre
> > server type or not   ?
> >
> > be patient   ..
> >
> > thanks in advance
> >
> > Gio
> >
> >
> >
> > *Da:* Brad Stone <bvstone@xxxxxxxxx>
> > *Inviato:* venerdì 16 gennaio 2026 19:30
> > *A:* Midrange Systems Technical Discussion <midrange-l@xxxxxxxxxxxxxxxxxx>
> > *Cc:* gio.cot <gio.cot@xxxxxxxxxxx>
> > *Oggetto:* Re: Configure Basic Authentication on HTTP SERVER
> >
> >
> >
> > Here's how I have BA set up for one of my servers...
> >
> >
> >
> > This directive is in the main config:
> >
> >
> >
> > <Location />
> >     Include /www/conf/bvscompsec.inc
> > </Location>
> >
> >
> >
> > This file mentioned contains the following:
> >
> >
> >
> > AuthName company_name
> > AuthType Basic
> > PasswdFile %%SYSTEM%%
> > <Limit GET POST>
> >    Require valid-user
> > </Limit>
> >
> >
> >
> > This will use the system user and passwords for validation.
> >
> >
> >
> > If you want to use validation lists, it would look like this:
> >
> >
> >
> > AuthName company_name
> > AuthType Basic
> > PasswdFile LIB/VLDLST
> > <Limit GET POST>
> >    Require valid-user
> > </Limit>
> >
> >
> >
> > where LIB is the library that the validation list (in this example,
> > VLDLST) is stored.
> >
> >
> >
> >
> >
> >
> >
> >
> >
> > On Fri, Jan 16, 2026 at 12:14 PM gio.cot via MIDRANGE-L <
> > midrange-l@xxxxxxxxxxxxxxxxxx> wrote:
> >
> > Hi all
> >
> > I'm new on configure http SERVER and deploy web services ..
> >
> > I have  configured an http SERVER and deployed a web service for test; it
> > works fine.
> >
> > Now i would like to learn and test how use "Basic Authentication"; can some
> > one suggest some links how to do that, i found this documet
> >
> > https://www.itjungle.com/2024/08/12/guru-creating-a-web-service-with-basic-a
> > uthentication/, but it seem for application server (not for http server
> > ..)
> > the instruction are the same ??
> >
> > In my server httpd.conf, i don't find
> >
> > <Location />
> >
> >    Require all granted
> >
> > </Location>
> >
> >
> >
> > Thanks in advance
> >
> > Gio
> >
> >
> >
> > --
> > This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
> > To post a message email: MIDRANGE-L@xxxxxxxxxxxxxxxxxx
> > To subscribe, unsubscribe, or change list options,
> > visit: https://lists.midrange.com/mailman/listinfo/midrange-l
> > or email: MIDRANGE-L-request@xxxxxxxxxxxxxxxxxx
> > Before posting, please take a moment to review the archives
> > at https://archive.midrange.com/midrange-l.
> >
> > Please contact support@xxxxxxxxxxxxxxxxxxxx for any subscription related
> > questions.