Validation of current credentials during query processing

If security is enabled for a collection when it is created, certain types of domains enable you to validate a user's current credentials when the user submits a query.

Before responding to a query, the search servers interface with the target repositories to validate the user's current permissions, and then remove all documents that the user does not have permission to view from the search results.

When you configure the following types of crawlers, you can select an option to validate user credentials by comparing the credentials to current access controls that are managed by the repository. After documents are crawled and indexed, the identity management component is used to validate users who attempt to search secure collections.
  • Agent for Windows file systems crawler
  • Content Integrator crawler (Documentum and Hummingbird DM repository types only)
  • Content Manager crawler
  • FileNet P8 crawler
  • Notes crawler
  • Quickr for Domino crawler
  • SharePoint crawler
  • Windows file system crawler

Current user credentials can also be validated when users use the Search portlet for enterprise search collections in WebSphere® Portal. Credential validation is not supported when users use the stand-alone enterprise search application to search sources on a WebSphere Portal server. To validate current credentials through the Search portlet, configure the Seed list crawler.