IBM HTTP Server for IBM i includes the IBM HTTP Server (powered by Apache).
The IBM HTTP Server for IBM i includes a rich collection of enhancements and features for a secure connection and a rich set of security features and services that pertain to the goals of authentication, authorization, integrity, confidentiality, and auditing.


Authentication using IBM i OS user profiles

IBM i OS user profiles can be used for authentication. The advantage of this implementation is that is does not require you to perform additional configuration steps or to maintain a separate user database.
User profiles with limited capabilities and no sign on access, and *SECOFR class users (although this practice is highly discouraged), can be used for this purpose. 


Users with limited capabilities may require additional permissions settings:

Grant IBM i user profiles permissions to access PHP when using Basic Authentication


IBM HTTP

The easiest way to manage the IBM HTTP Apache is through IBM Web Administration for IBM i also known as *ADMIN server running on port 2001. (IBMi_Server_IP:2001)

 

IBM HTTP Server Configuration (httpd.conf) 

The example below is from a Zend Server 202x. installation.  *NOTE: If you are running Zend Server 9.1.x, 2018.x, or 2019.x, replace port 10100 with port 10090 (possibly 10080 or the port you have assigned for this version) and zendphp74 with zendphp7

httpd.conf
#
Listen *:10100
DocumentRoot /www/zendphp7/htdocs
NameVirtualHost 10.1.1.47:10100
<VirtualHost 10.1.1.47:10100>
   ServerName ZendVH.com
   DocumentRoot /www/zendphp74/htdocs
  <Directory /www/zendphp74/htdocs>
      Order Allow,Deny
      Allow From all
 </Directory>
<Location />
ProfileToken On
AuthType Basic
AuthName "IBM i OS User Profile"
Require valid-user
PasswdFile %%SYSTEM%%
order deny,allow
Allow from all
</Location>
</VirtualHost


Access validation through IBM i OS user profiles is the simplest and under certain circumstances, least secure way to restrict access to your data.
While acceptable in non-critical environments, we do not recommend this kind of authentication alone on public networks such as the Internet, where its simple Base64 encoding and the use of actual user profiles and passwords can compromise the security of your system. A good choice for protecting your data is to use data encryption with SSL and TLS.


IBM HTTP Server for IBM i secure connection relaying on the system user profiles feature and a Web Administration for IBM i OS that provides a full function GUI interface for configuring and managing many Web technologies, With IBM HTTP Server for i you can quickly and easily establish a Web presence and get started on the road to working the Web for business.


IBM HTTP Server

Getting started with the IBM Web Administration for i interface

Setting up virtual hosts on HTTP Server