Re: "ASP.NET" Permissions don't work, "Everyone" does

From: Jason Brown [MSFT] (i-brjaso_at_online.microsoft.com)
Date: 12/02/04 

Date: Thu, 2 Dec 2004 11:22:27 +1100

One very good way is to use FileMon from www.sysinternals.com to monitor
file access and determine which file accesses are denied. then you can get
the process properties and see what account is trying to access the file.

likewise they have a tool called RegMon which does similar tricks with the
registry. between the two you can get a very detailed picture of what's
going on in the background. 

-- 
Jason Brown
Microsoft GTSC, IIS
This posting is provided "AS IS" with no warranties, and confers no
rights.
"Chris" <Chris@discussions.microsoft.com> wrote in message 
news:31ABF72C-97D7-4A76-BADC-7F4CE41DE96B@microsoft.com...
> Greetings,
>
> I'm running into a problem with IIS 6/ASP.NET user permissions for a site.
>
> To my knowledge, only "IUSR_SERVER" and "ASP.NET Machine Account" accounts
> are required on the application to run via the web. However, this is not 
> the
> case for this particular application, which is created the same way our 
> other
> .NET applications are produced.
>
> The application only started working correctly once the "Everyone" account
> was assigned to the folder... I know this is a risky and non-safe internet
> policy.
>
> Is there any way to see exactly what accounts require access to a resource
> in order to eliminate "Everyone" from our permissions, for instance, maybe 
> a
> "Current users connected" type display? I tried looking in the IIS site
> properties as well as the Event Log, but I'm quite lost.
>
> Thanks in advance for any help you could give me.

Relevant Pages

  • Re: only one user cannot log in RWW
    ... In Server Management | Standard Management | Users, ... user permissions setup using the Wizard (select the radio button for: ... I was asked to create him an email account and gave him OWA ... I removed him from all groups except "RWW users" so that he ...
    (microsoft.public.windows.server.sbs)
  • Re: only one user cannot log in RWW
    ... user permissions setup using the Wizard (select the radio button for: ... I was asked to create him an email account and gave him OWA ... I removed him from all groups except "RWW users" so that he ...
    (microsoft.public.windows.server.sbs)
  • Re: cannot change Program Files to full control
    ... I tried your suggested tests and they performed just as you predicted. ... It looks like that folder and some folders within the folder are in a total locked out and total protected user permissions state when it comes to user permission modification, ... You could try to enable the hidden Admin Account on Vista, which is suppose to have Full Admin rights permission on Vista like it does on XP. ...
    (microsoft.public.windows.vista.security)
  • Re: "ASP.NET" Permissions dont work, "Everyone" does
    ... Regards, ... > file access and determine which file accesses are denied. ... > the process properties and see what account is trying to access the file. ...
    (microsoft.public.inetserver.iis.security)
  • "ASP.NET" Permissions dont work, "Everyone" does
    ... I'm running into a problem with IIS 6/ASP.NET user permissions for a site. ... The application only started working correctly once the "Everyone" account ... policy. ...
    (microsoft.public.inetserver.iis.security)
Quantcast