Security

To Start

Quick Steps

  1. Create a Security: CAS or Security: Generic Component
  2. Insert applicable security information (NetID, OrgID, or IP for a CAS component, or custom usernames and passwords for a Generic component)
  3. Make a new page within the Structure Group you want to secure, ensure the Page Template is XML and the File name is "security"
  4. Publish the page.

Security can be used on YSM sites to restrict access to an entire site or one particular directory, or structure group, of a site. Using CAS, the Yale University login system, access can be limited to only certain NetID's, only Yale employees affiliated with a chosen organization or set of orgs, or any combination of those three parameters.

Alternatively, you can use the Generic security option. This allows you to create a custom username and password that users will need to enter the secured portion of your site. You can create just one custom username and password or multiple possible entries that will grant access, whatever best suits your needs.

In either case, be sure to follow the "Applying Security to A Structure Group" instructions after creating the "CAS" or "Generic" component.

The “Security: CAS” Schema

  1. Create a new component, and select the schema "Security: CAS."
  2. Under “Allow the following group’s access” select a Security Type. The options are NetID or IP.
  3. Based on your selections insert the corresponding information in the Values field. For example, if you selected NetID insert comma separated NetID’s, if you are using OrgID’s insert comma separated OrgID’s, and the same method for IP address.
    1. NetID's and OrgID's can be found in the Yale Phonebook (you'll need to log in with CAS). IP addresses will have to be obtained from your business manager or ITS contact.
  4. If you will be using multiple Security Types within this single Security component it is crucial to use the furthest left green radio button to make an additional field for your other values.
  5. Once you've finished inserting your Security Types and coordinating Values click Save & Close in the Home tab.
  6. The component is ready to be inserted onto a page in your root folder. See the "Applying Security to a Structure Group" instructions below.

The “Security: Generic” Schema

  1. Create a new component, and select the schema "Security: Generic."
  2. Beneath "Enter a generic username and password:” Fill in Generic Username and Generic Password. These fields can contain any username and password of your choosing.
  3. If you would like to allow more than one custom username and password that can access the secured folder, click the green add button to add a second set of fields. You can add as many username and password pairs as you like.
  4. Once you've finished inserting your username(s) and password(s) and click Save & Close in the Home tab.
  5. The component is ready to be inserted onto a page in your root folder. See the "Applying Security to a Structure Group" instructions below.

Applying Security to A Structure Group

  1. Within the Structure Group you would like to secure, create a new page.
  2. The Name of this new page should be "Security," and File Namemust be "security" (lowercase, no spaces).
  3. Below Page Template, uncheck Inherit from Parent.
  4. Then, select XML from the Page Template dropdown.
  5. In the Component Presentations tab of your page, click Insert. Your Building Blocks folder will pop up, select the security component you just created.
  6. Select the component template that matches the schema of the component you created ("Security: CAS" or "Security: Generic").
  7. Click Save & Close, then publish the page.