Re: IIS authentication
From: Blake (blake_duffey_at_NOSPAM.hotmail.com)
Date: 02/26/04
- Next message: anonymous_at_discussions.microsoft.com: "Re: Win 2K3, IIS6.0 Config"
- Previous message: Chuck Wyatt: "Re: URLScan and SQL Injection"
- In reply to: Tom Kaminski [MVP]: "Re: IIS authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 26 Feb 2004 10:53:06 -0500
Excellent! Thanks, Tom. Good info on this topic.
Blake
"Tom Kaminski [MVP]" <tomk (A@T) mvps (D.O.T) org> wrote in message
news:c1l1pb$arh8@kcweb01.netnews.att.com...
> "Blake" <blake_duffey@NOSPAM.hotmail.com> wrote in message
> news:ONbaQiH$DHA.2316@tk2msftngp13.phx.gbl...
> > OK - I have IIS 5 on a member server. The files are set at the NTFS
level
> > to 'authenticated users' (RX) and the IIS folder is set to 'basic
> > authentication' ONLY. I have SSL required for this folder. I am trying
> to
> > allow only valid AD users to visit this page:
> >
> > 1) can a user whose account is DISABLED view this page? I thought no,
but
> > today it seems to work
> > 2) in the past an account that was marked 'user must change password at
> next
> > logon' could NOT access this page, but now that seems to work too
> > 3) if an account has it's password expire, can that account visit my web
> > page?
> >
> > Does anyone have any references on the connection between AD IDs and IIS
> > authentication?
>
> This explains it ...
>
http://support.microsoft.com/default.aspx?scid=kb;en-us;152526&Product=iis50
>
> --
> Tom Kaminski IIS MVP
> http://www.iistoolshed.com/ - tools, scripts, and utilities for running
IIS
> http://mvp.support.microsoft.com/
> http://www.microsoft.com/windowsserver2003/community/centers/iis/
>
>
>
- Next message: anonymous_at_discussions.microsoft.com: "Re: Win 2K3, IIS6.0 Config"
- Previous message: Chuck Wyatt: "Re: URLScan and SQL Injection"
- In reply to: Tom Kaminski [MVP]: "Re: IIS authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
