The presentation will provide an introduction to GeoFence, an open source tool to configure and use complex authorization rules to protect data served by GeoServer OGC services. The introduction will cover the unique integration architecture, comparing it with the usual security proxies and comparing merits of the different approaches, moving on to show the fine setup of grained authorization rules spanning form spatial filters, attribute filters, attribute hiding as well as cropping raster data to areas of interest, and how they can be assigned to single users or groups of them. The granularity can span from the instance of GeoServer, to workspaces, to single layers. The presentation will move on to authentication integration and user management, with examples from the integration of LDAP directories. Using LDAP GeoFence and GeoServer can use a common users database, simplifying administrators job. We will show how GeoFence can centralize authorization policies on a common repository, for several GeoServer instances, easing cluster configurations. Finally, the presentation will show how GeoFence is used in practice with a few real world use cases.