Re: secure site - multiple users w/ 1 user account?
From: David Wang [Msft] (someone_at_online.microsoft.com)
Date: 06/05/05
- Next message: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Previous message: Kevin: "Trusted Server"
- In reply to: b_russ_at_yahoo.com: "secure site - multiple users w/ 1 user account?"
- Next in thread: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Reply: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 5 Jun 2005 14:02:45 -0700
Sure, this is exactly what happens when you choose "Anonymous
Authentication" in IIS.
When you enable anonymous authentication, IIS simply logs in a user-defined
anonymous user (IUSR_machinename by default), and all users use that account
to access resources.
Now, IIS does not have any authentication protocols that work as
"authenticate remote username against some password, the log on as another
identity to access resources".
- Anonymous does not authenticate remote users and logs on as user-defined
identity
- Basic, Integrated, Digest, etc all authenticate remote users against
either local SAM or Active Directory and log on as that user
- Cert Mapping uses the identity stored in client-certificate and map to
some NT user
I'm not certain whether you want:
1. those other 100 users to have access to the rest of the secure site as
either themselves or as the single user account
2. the less secured page is only accessible to the 100 users as well as
anyone that digest authenticates
In other words, do you want those 100 new users to be treated like a single
NT user for access to the secured site, and do you care who accesses the
less secured page?
If you do not care who accesses the less secured page, then I suggest
enabling Anonymous Authentication on just the page itself and set its
anonymous username/password as the "single user account". This way, anyone
can access this less secured page, and the 100 new users still do not have
access to the secured site.
-- //David IIS http://blogs.msdn.com/David.Wang This posting is provided "AS IS" with no warranties, and confers no rights. // <b_russ@yahoo.com> wrote in message news:1117914965.425746.186300@g47g2000cwa.googlegroups.com... Background: I have an https secure site on IIS. It uses digest authentication and a unique username/PW is assigned for each user. New Project: I'm going to create a new page with less secure content such as procedures, instruction, etc. I'll create a new folder and security group for seperate access to this page. The new page will have about 100 new users. I want to utilize the secure site for this new page but I DON'T want to create 100 new accounts - I'd like to instead create a single user account so that all 100 new users of this page can use the same account Username/PW QUESTION: From a functionality and performance viewpoint (not from a security standpoint) Is it possible (and is good practice) to have multiple users logon to the site using the same account simultaneously? Thanks, Bryan
- Next message: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Previous message: Kevin: "Trusted Server"
- In reply to: b_russ_at_yahoo.com: "secure site - multiple users w/ 1 user account?"
- Next in thread: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Reply: b_russ_at_yahoo.com: "Re: secure site - multiple users w/ 1 user account?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
