Other Web authorization techniques...
IP address validation - resource grants access to everyone coming from range(s) of addresses
- Seems to be the most common method. This technique is also “built-in” to the HTTP protocol (requires no special programming on server, easy for vendor).
- Problem of providing off-site access to people with non-institutional Internet Service Providers.
- Problem if there is a need to distinguish between different classes of users at a single institution - for example, you might want to grant graduate students and faculty access to pay-per-search databases that undergraduates don’t get access to.
- May be a problem if institution does not have a class B IP address (e.g., 138.237), since could be difficult to set up each individual class C range.