RE: security
From: IT Community (it-community.online@microsoft.com)
Date: 12/02/02
- Next message: IT Community: "RE: IIS 6.0 and certificate authorities"
- Previous message: Karl Levinson [x y] mvp: "Re: Webhosting Network Question"
- In reply to: JPG: "security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: it-community.online@microsoft.com (IT Community) Date: Mon, 02 Dec 2002 00:22:10 GMT
You wrote:
| I have tried for days to restrict access to some files
| with IIS File security option, but never success.
| I have created a valid windows acount, I have selected
| Integrated windows authentication. when I try to access
| the file, the system rejects the username and password.
| What can be wrong??
Response:
Assuming you are restricting only selected objects in a web site allowing
anonymous access.
1. In Windows Explorer, on the content folder, assign NTFS permissions such
that local admin and system groups with full control, and the local user
group with standard read, i.e. read and execute, list folder contents, and
read. This is a standard NTFS setting on a web content folder allowing
anonymous access.
2. In Windows Explorer, on the content folder identify a selected object,
i.e. a file or folder, to be restricted. From the NTFS permissions
settings, take out the user group and add the intended users with proper
permissions.
3. In IIS console, highlight the web site and locate the objects on the
right pane. Rightclick the object and go to properties/file (or directory)
security. Edit anonymous access and authentication control. Unchecked
Anonymous Access, and If all intended users are intranet ones, check
Integrated Windows. If some are from Internet, check Basic and only Basic
authentication.
300691 HOW TO: Set Up a File System for Secure Access in Windows 2000
http://support.microsoft.com/?id=300691
You wrote:
| I dont know how to encrypt the file in the NTFS because
| the user I have created to this item does not appears in
| the Encryption Details, only appears my active windows
| logon account.
Response:
243756 HOWTO: Use Encrypting File System (EFS) with Internet Information
http://support.microsoft.com/?id=243756
248723 INFO: Understanding Encrypted Directories
http://support.microsoft.com/?id=248723
222054 Encrypting Files in Windows 2000
http://support.microsoft.com/?id=222054
243035 HOW TO: Disable/Enable EFS on a Stand-Alone Windows 2000-Based
Computer
http://support.microsoft.com/?id=243035
223316 Best Practices for Encrypting File System
http://support.microsoft.com/?id=223316
255026 The Local Administrator Is Not Always the Default Encrypting File
System
http://support.microsoft.com/?id=255026
Please do not send email directly to this alias. This is an online account
name for newsgroup participation only.
This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use.
Cumulative Patch for Internet Information Service (Q327696) released on
10/30/2002
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
bulletin/MS02-062.asp
Microsoft Product Service Packs
http://support.microsoft.com/default.aspx?ID=FH;EN-US;sp&FR=0&SD=GN&LN=EN-US
&CT=SD&SE=NONA
Microsoft IIS Bookstore
http://go.microsoft.com/fwlink/?LinkID=8279
- Next message: IT Community: "RE: IIS 6.0 and certificate authorities"
- Previous message: Karl Levinson [x y] mvp: "Re: Webhosting Network Question"
- In reply to: JPG: "security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
