Password Protecting Directories
Click to see a video walk-through to show you how to use this feature

The easiest way to password protect directories is to use our Web Shell/File Manager program.  When selected through the main menu WEB SHELL or File Manager, one of the features of the system is password protection.  When you first launch the Web Shell program, select the "PROTECT" button middle portion or on the top of the page.

This will launch the Protect Wizard.

You will then see your site folder directory.


Select the FOLDER  you wish to password protect


Enter the name of the password protected area.  When your users are prompted to enter their user name and password, this text will appear on the box (pop-up)


The system then shows the location of the password file.  You should not need to edit the location of the files and can simply enter the password and select NEXT.


You then enter the username.


You will also have the option to add a group to control access.  You would put in the name of the group here, or just select NEXT, leaving the field blank.


Click through the next screen and make sure you SAVE your changes in the next screen or else everything will be discarded.



Other Information:

The .htaccess (the term used to describe password protected files) file spoken of is a general tool used by Unix systems.  It is a control file for password protecting directories.  The WebShell system automatically creates and helps you manage the .htaccess files.

The HELP files are quite useful within the WebShell program and provide valuable information for password protecting directories.  You can open the help files in a separate window, should you wish to keep it open as you work through the system.


Simply select the apply and next buttons to go through the process as prompted.  

Please make sure you go to your web site and test your settings prior to providing access or passwords to anyone.  Enter the path of the folder you setup to protect and see if you get the login prompt.  You may want to setup your error pages as well as if someone cannot authenticate that should be able to, encourage them to let you know by a custom error page.