General discussion

Locked

IIS 4.0 Question

By aspiring_one ·
Is there any way to restrict the permissions a network user has to a directory containing a web site in Windows Explorer using NTFS without putting some type of access control on the site itself when someone attempts to view it across the Internet?

What I’m trying to do is give the developers on the network access to the directory containing the files and restricting everyone else’s’ access, but without putting restrictions on the site itself across the Internet.

WhenI have done this in the past, it denies access to those trying to view it across the Internet or prompts them for a password, even though I have allowed anonymous access to the site.

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

IIS 4.0 Question

by jcparkerconsulting In reply to IIS 4.0 Question

First realize that you are taling aout two different sets of rights. Those coming accross your network (ie Developers & users) should be restricted or enabled by NT permissions. You do not have allow anyone except the Administrator and the Developers (Make this a group) access to that area of the server file system.

From the web, all users should have access to view/read the content unless you are running security which can be set up by doing NT authintication to those parts of the site those users (or groups of users (hint)) require. SSL for customers or users can be configured by cookies.

If you search http://support.microsoft.com for Internet Information Server and Security you will find a number of detailed articles. TID Q142868 is a good place to start as it describes in general terms your question.

Hope this is of assistance

Collapse -

IIS 4.0 Question

by aspiring_one In reply to IIS 4.0 Question

The question was auto-closed by TechRepublic

Collapse -

IIS 4.0 Question

by wayne.maples In reply to IIS 4.0 Question

in IIS properties for site, set up your site for anonymous connections only - this gives normal web access.

then create a share for the developers and use either share permissions or NTFS permissions to grant the developer group updated access. Don't remove the Everyone NTFS permissions - needed for anonymous web access normally.

I prefer to use the share permissions and leave the NTFS permissions alone when granting access to developers.

Collapse -

IIS 4.0 Question

by aspiring_one In reply to IIS 4.0 Question

The question was auto-closed by TechRepublic

Collapse -

IIS 4.0 Question

by aspiring_one In reply to IIS 4.0 Question

This question was auto closed due to inactivity

Back to Windows Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums