Skip to main content

Securing MarkLogic Server

Open Access, No Log In

This approach may be appropriate if security is not a concern for your MarkLogic Server implementation or if you are just getting started and want to explore the capabilities of MarkLogic Server before contemplating your security architecture. This scenario provides all of your users with the admin role.

You can turn off access control for each HTTP or WebDAV server individually by following these steps using the Admin Interface:

  1. Go to the Configure tab for the HTTP server for which you want to turn off access control.

  2. Scroll down to the authentication field and choose application-level for the authentication scheme.

  3. Choose a user with the admin role for the default user. For example, you may choose the admin user you created when you installed MarkLogic Server.

Note

To assist with identifying users with the admin role, the default user selection field places (admin) next to admin users.

In this scenario, all users accessing the application server are automatically logged in with a user that has the admin role. By default, the admin role has the privileges and permissions to perform any action and access any document in the server. Therefore, security is essentially turned off for the application. All users have full access to the application and database associated with the application server.

In this section: