Re: Security - lock down by PC

From: Dyawlak (myles_boyd_at_yahoo.com)
Date: 01/31/05

Next message: Eric: "Re: Getting digital signature from SSL handshake"
Previous message: Roger Abell [MVP]: "Re: IUSR and IWAM domain accounts"
In reply to: Jason Brown [MSFT]: "Re: Security - lock down by PC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 31 Jan 2005 08:18:55 -0000

In that case I might come unstuck.
I am only using an XP pro machine as the IIS server - where do I find the
certificate service or does it need a real server?

Rgds

Dyawlak

"Jason Brown [MSFT]" <i-brjaso@online.microsoft.com> wrote in message
news:eB406Q0BFHA.4008@tk2msftngp13.phx.gbl...
> There are a few ways you could lock down IIS access like this.
>
> 1. IP address restrictions (not reliable on the road but fine for a single
> remote location)
> 2. username/password as you're already doing
> 3. use a client certificate on the roaming machine, authenticate against
> that
> 4. smart cards (perhaps overkill)
>
> there are likely other ways too, such as adding a VPN layer. Your host
> names suggestion won't really work though unless you're always dialled in
> to the same ISP when roaming and always have the same host name. I'd go
> with a client certificate, personally.
>
>
> --
> Jason Brown
> Microsoft GTSC, IIS
>
> This posting is provided "AS IS" with no warranties, and confers no
> rights.
>
>
> "Dyawlak" <myles_boyd@yahoo.com> wrote in message
> news:41fba9d9$0$74273$ed2619ec@ptn-nntp-reader03.plus.net...
> I know u can lock down access to your websites thru IIS with accounts, but
> can u restrict access to certain host names only ?
>
> Example - I am sharing my printer over internet so I can print when
> roaming with my laptop. Currently I log in with ac name & pswd, but
> wondered if I could limit the access to my laptop only
>
>
> many thanks
>

Next message: Eric: "Re: Getting digital signature from SSL handshake"
Previous message: Roger Abell [MVP]: "Re: IUSR and IWAM domain accounts"
In reply to: Jason Brown [MSFT]: "Re: Security - lock down by PC"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: HTTP 403.16 - Forbidden: Client certificate untrusted or invalid
... certificate from the CA onto the IIS server. ... I understand that you've looked into the "Trust Only Enterprise Root ... Stores" option but did you install the root cert from the CA onto your IIS ... Q252657 IIS 5.0: HTTP 403.16 Forbidden: Client certificate Untrusted ...
(microsoft.public.inetserver.iis.security)
MakeCert, SSL and IIS6 problems.
... The first one is self signing certificate, second one is for IIS server ... The first certificate (self signing) is located in "Trusted Root ... Using the IIS manager admin tool, I assigned the second certificate ...
(microsoft.public.inetserver.iis.security)
Re: create own certificate for SSL
... > a) You generate the certificate request, and save it off to a file. ... > e) On the IIS server, now go back to IIS Manager and run the Certificate ...
(microsoft.public.inetserver.iis.security)
RE: ssl certificate error on public folders
... "Finish" to remove the certificate. ... Restart the IIS Admin service in the services mmc. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
(microsoft.public.windows.server.sbs)
RE: ssl certificate error on public folders
... "Finish" to remove the certificate. ... Restart the IIS Admin service in the services mmc. ... Microsoft CSS Online Newsgroup Support ... This newsgroup only focuses on SBS technical issues. ...
(microsoft.public.windows.server.sbs)