Re: Make IIS 5.0 recognize NTFS Permissions??
From: Tim Govers (tim.govers_at_admin.provant.be)
Date: 03/02/04
- Next message: fv: "IIS crash"
- Previous message: Miriam Green: "RE: Timer in ISAPI Extension"
- In reply to: Dan Kennedy: "Make IIS 5.0 recognize NTFS Permissions??"
- Next in thread: Dan Kennedy: "Re: Make IIS 5.0 recognize NTFS Permissions??"
- Reply: Dan Kennedy: "Re: Make IIS 5.0 recognize NTFS Permissions??"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 2 Mar 2004 19:40:34 +0100
Hi Dan,
First of all the logical directory security (IIS):
If only authenticated visitors may enter, clear the "anonymous access" box
and choose you're authentication:
-> Basic, Digest or Integrated authentication.
Basic isn't really secure 'cause it 'll send the password in clear text.
If you want that visitors who are already authenticated (logged on) on
you're network (AD) "Integrated Security" is the best. This way these
visitors don't need to authenticated themself again.
If they're not already authenticated they will be asked to authenticate
themself.
The physical directory security (fs):
See that the IUSR_xxxx and everyone is cleared from the permissions. Then
just add the groups (/users) you want to give permission.
Greets,
...Tim.
"Dan Kennedy" <dankennedy24@hotmail.com> schreef in bericht
news:53aba508.0403020954.433eaa5e@posting.google.com...
> Okay, I think this should be much easier than it is becoming....
> I have a directory under c:\inetpub\wwwroot named "website" and it's
> accessed via my intranet via http://server/website. What I'd like to
> do is assign it some NTFS permissions and have those permissions take
> effect on who can view the web site. What I'm encountering is that
> nothing seems to work in this fashion. I've played with the IIS
> security settings but what I think should be right is to leave all
> options except "Integrated Windows Authentication". The web server is
> a 2000 server running in a Windows NT domain. The rights on the
> directory are cascaded so that all the files underneath inherit the
> rights. One thing I've noticed is that if I set the users to have
> admin rights on my web server that they can then browse the sight (the
> "website" directory has both system and local admins set to full
> rights). Can someone please tell me how I can make only the NTFS
> group, system and local admins be able to browse this sight? Oh yes,
> one more piece of info, the site runs on port 80 and both the default
> and administration web sites on this box is assigned to other ports.
> I'm buying beers for anyone who helps me figure this out!!
> Dan
- Next message: fv: "IIS crash"
- Previous message: Miriam Green: "RE: Timer in ISAPI Extension"
- In reply to: Dan Kennedy: "Make IIS 5.0 recognize NTFS Permissions??"
- Next in thread: Dan Kennedy: "Re: Make IIS 5.0 recognize NTFS Permissions??"
- Reply: Dan Kennedy: "Re: Make IIS 5.0 recognize NTFS Permissions??"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
