Skip To Content

Configuring ArcGIS Server security

You can use ArcGIS Server Manager to configure the settings for ArcGIS Server security. The security settings define how users and roles are managed and how users are authenticated. To configure security, you must be logged in to Manager as the primary site administrator. If the primary site administrator account has been disabled, you're required to reenable the primary site administrator before you can change ArcGIS Server security.

Three options are available in Manager to configure how users and roles are managed:

In addition to these three options that are available in Manager, you may also manage users and roles in a custom identity store. For information on how to manage users and roles in a custom identity store, see:

Two options are available in Manager to configure how users are authenticated:

The table below describes the identity store configurations that are supported for the type of authentication chosen:

Authentication mechanismSupported identity store configurations

ArcGIS Server authentication

  • Built-in users and roles
  • Users in Active Directory and roles in either Active Directory or the built-in store
  • Users in LDAP and roles in either LDAP or the built-in store
  • Users in a custom store and roles in the custom or the built-in store

Web Tier authentication

Any user store for which the web server has built-in or extensible support

For example, if your web server has built-in support for Active Directory, LDAP, and custom identity stores, you may use one of the following configurations:

  • Users in Active Directory and roles in either Active Directory or the built-in store
  • Users in LDAP and roles in either LDAP or the built-in store
  • Users in a custom store and roles in the custom or the built-in store