Re: Operator Security

From: Edgar Yanez [MS] (eyan@online.microsoft.com)
Date: 12/30/02 

From: eyan@online.microsoft.com (Edgar Yanez [MS])
Date: Mon, 30 Dec 2002 17:21:59 GMT

Jeff,

You can use MetaACL to add permissions to the metabase and by setting the
security descriptor, you can control access to the metabase keys.
http://support.microsoft.com/?id=267904

Thank You
Edgar Yanez
DSM IIS Support

This posting is provided "AS IS" with no warranties, and confers no rights.
You assume all risk for your use. © 2001 Microsoft Corporation. All rights
reserved.
Please do not send email directly to this alias. This is our online account
name for newsgroup participation only.

--------------------
| From: "BB" <Bernard_at_3exp.com>
| References: <#fKpMQxpCHA.2272@TK2MSFTNGP12>
<#hKqFaxpCHA.2204@TK2MSFTNGP09> <uFGgMfxpCHA.1628@TK2MSFTNGP12>
| Subject: Re: Operator Security
| Date: Thu, 19 Dec 2002 15:31:50 +0800

|
| You need to specifically blocked them on certain
| resources access, but generally since you put them
| in the group, they are pretty much trusted.
|
| Rgds.
|
|
| "Jeff Emery" <jemery@nospam.com> wrote in message
| news:uFGgMfxpCHA.1628@TK2MSFTNGP12...
| > Thanks... This works, but is it okay as far as security? Should I worry
| that
| > those users are now admins on the local server?
| >
| > Thanks
| >
| > "BB" <Bernard_at_3exp.com> wrote in message
| > news:#hKqFaxpCHA.2204@TK2MSFTNGP09...
| > > The user need to be a member of 'local administrator'
| > > of that IIS machine.
| > >
| > > Rgds.
| > >
| > > "fred" <sam@nospam.com> wrote in message
| > > news:#fKpMQxpCHA.2272@TK2MSFTNGP12...
| > > > I'd like to create a Active Directory Group that is allowed to
| > administer
| > > an
| > > > IIS Server, but I don't want to add those users to Administrators
| group.
| > I
| > > > created a new group called IIS Administrators, added the users to
the
| > > group,
| > > > and add the group to the IIS Operators list. This was almost ok, but
| I'm
| > > > getting an error enumerating files, so I don't even know if I'm on
the
| > > right
| > > > track.
| > > >
| > > > Can anyone tell me where to find info on this?
| > > >
| > > > Thanks.
| > > >
| > > >
| > >
| >
| >
|
|

Relevant Pages

  • RE: Sandboxing
    ... By having the NIC be a hardware VPN with a secure remote configuration option, one would control access so that unauthenticated traffic would not pass, and all traffic would follow a policy. ... Individual machine security was at the top of the list when DARPA contributed to this product's research, and the Navy is calling this the "most promising technology." ... During the Policy Server installation, ...
    (Focus-IDS)
  • IWA problem
    ... Security to control access. ... Authentication and Access Control ensuring Anonymous Access is NOT checked ... users get prompted to enter a user id/password when they hit the website. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Prevent copying to local HD
    ... security breach. ... It sounds like you're trying to control access to some Access MDB files -- ... plan for mitigation of that security breach. ... We do have Citrix Metaframe. ...
    (microsoft.public.windows.server.security)
  • Password access to XP computers?
    ... I want to be able to connect to each subdir on every machine on my home ... security system in XP, but must use Simple and let everyone have access to ... control access to others in my home workgroup? ...
    (microsoft.public.windowsxp.security_admin)
  • Re: How do I get rid of "Domain" textbox in "Enter Network Password" dialog?
    ... Rgds. ... > I have set NT security on a couple of folders via user permissions. ...
    (microsoft.public.inetserver.iis.security)