Re: IIS Security using Integrated Windows Authentication

From: Deus, Attonbitus (Thor@HammerofGod.com)
Date: 02/03/03

  • Next message: Brian W. Spolarich: "RE: IIS Security using Integrated Windows Authentication"
    Date: Mon, 03 Feb 2003 08:39:18 -0800
    To: Ghost <pplanetmars@yahoo.com>, focus-ms@securityfocus.com
    From: "Deus, Attonbitus" <Thor@HammerofGod.com>
    
    

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    At 04:28 AM 2/3/2003, Ghost wrote:
    >Hello All,
    >
    >I have a site hosted on IIS that I want to use
    >Integrated Windows Authentication to authenticate
    >users before they can access the site. But I do not
    >want everyone that has valid logon credentials to be
    >able to access the site. Only a few users. How can I
    >achieve this?
    >
    >Thank you.

    Use NTFS permissions on the directory structure and group membership to
    limit what users have perms for the site. In other words, only give a
    particular group permissions, and make the people you want to have access
    members of that group.

    hth

    T
    -----BEGIN PGP SIGNATURE-----
    Version: PGP 7.1

    iQA/AwUBPj6bNohsmyD15h5gEQLqagCcCBBcWysXgeMLHBoq/tAL6Fnn2V8An2MX
    o+5urtugJUWz/4uMYhx9gioA
    =VYwM
    -----END PGP SIGNATURE-----