This is documentation for Mathematica 5, which was
based on an earlier version of the Wolfram Language.
View current documentation (Version 11.2)

Documentation / Mathematica / Getting Started / Network SysAdmin Guide / The Mathematica License Manager / Restricting Licenses /

5.5.1 Writing a Restriction Script

MathLM 5.0 supports a new syntax for restriction scripts. Although they are relatively simple to write, restriction scripts can be very useful in managing sitewide installations of Mathematica. They can be used to prevent access to Mathematica by unauthorized users on the network.

The new restriction scripts are cross-platform compatible, provide unambiguous control, and require no programming experience to write. The syntax of the restriction scripts is very similar to that of the .htaccess files used in web servers for controlling access to HTML files. This syntax is already familiar to most system administrators, making it easy to learn.

The layout of a typical restriction script is as follows.

AuthGroupFile mathlmgroup

AuthName Sample



/* Precedence */

order (allow, deny | deny, allow)



/*Machine restriction */

allow from (all | host1 host2 ... | .domain1.com .domain2.com ...)

allow hostgroup hostgroup1 hostgroup2 ...

deny from (all | host1 host2 ... | .domain1.com .domain2.com ...)

deny hostgroup hostgroup1 hostgroup2 ...



/* User restriction */

allow user (all | user1 user2 ...)

allow group group1 group2 ...

deny user (all | user1 user2 ...)

deny group group1 group2 ...

Defining the Terms

1. AuthGroupFile mathlmgroup

The name of a file containing definitions for groups of users or machines.

2. AuthName Sample

The name of the script.

3. order (allow, deny | deny, allow)

Defines the precedence. The latter takes precedence over the former.

4. allow from (all|host1 host2 ... | .domain1.com .domain2.com ...)

The list of machine names or domains that are allowed to connect.

5. allow hostgroup hostgroup1 hostgroup2 ...

The list of machine groups to which machines must belong in order to connect.

6. deny from (all | host1 host2 ... | .domain1.com .domain2.com ...)

The list of machines or domains that are prohibited from connecting.

7. deny hostgroup hostgroup1 hostgroup2 ...

The list of machine groups that are prohibited from connecting.

8. allow user (all | user1 user2 ...)

The list of users allowed to connect.

9. allow group group1 group2 ...

The list of user groups allowed to connect.

10. deny user (all | user1 user2 ...)

The list of users prohibited from connecting.

11. deny group group1 group2 ...

The list of user groups prohibited from connecting.