PDPop.IPAuthInfo object in IBM Security Verify Access for Web

PDPop.IPAuthInfo object

An array of PDPop.IPAuthInfo objects is passed as input to the PDPop.setIPAuthInfo and PDPop.removeIPAuthInfo methods. Each PDPop.IPAuthInfo object contains the following information:

The IP address associated with the credentials that are being checked.
The netmask associated with the credentials that are being checked.
The IP authentication level of the credentials for the specified IP address and netmask used when accessing the protected object to which this POP is attached. All integer values except 1000 are supported for specifying a level index. Use the constant IPAUTH_LEVEL_FORBIDDEN_ALL_NETWORKS to deny access from all networks.
The IP address and netmask can be specified in either of the following formats:

IPv4

The primary format of an IPv4 IP address is x.x.x.x, which is a 32-bit numeric address that is written as four numbers that are separated by periods. A value of 0.0.0.0 indicates that this setting is for any other network for which this policy is not set explicitly.

IPv6

One of the primary formats of an IPv6 IP address is x:x:x:x:x:x:x:x, which is a 128-bit numeric address that is written as eight numbers that are separated by colons. The contiguous fields that contain only the digits zero can be collapsed (for example: 0009:0000:0000:0000:0000:0008:0007:0006 can be represented as 9::8:7:6).
A zero network and netmask value indicates that this setting is for any other network for which this policy is not set explicitly. See the standard RFC 2373 to determine what constitutes a valid representation of an IPv6 address. Security Verify Access does not support prefix notation.

When we specify the IP address or netmask, be aware of the following restrictions:

IPv4 clients must provide addresses in IPv4 format to IPv4 servers.
IPv4 clients can provide addresses in IPv4 or IPv6 format to IPv6 servers.
For an IPv6 address to be accepted, the server must be IPv6. We cannot provide an IPv6 address to an IPv4 server.
See the IBM Security Verify Access for Web: Administration Guide for more information about the IP authentication POP policy. See the Javadoc information for the PDPop.IPAuthInfo object and its associated methods for more information.
Parent topic: Administer protected object policy objects