Ideas on deferring authentication?
rgutter_at_bctf.ca
Date: 06/21/05
- Next message: phreeskier_at_gmail.com: "AUTHORIZATION with WINDOWS AUTHENTICATION -- HELP!!"
- Previous message: Phil: "IIS and domain security"
- Next in thread: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Reply: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 21 Jun 2005 14:01:43 -0700
We currently have a public IIS6 server in our DMZ. It's been made a
domain member to allow Basic Authentication against our AD for a
number of confidential documents - all within a single web - on the
server. (We don't want to maintain a separate user database.)
I can make this marginally more secure by moving the confidential
documents to an internal host and using UNC Passthrough authentication,
but I'd rather find a way to turn the public web server into a
standalone server. Is it sensible to think of moving the confidential
documents to an internal web server and performing authentication
there? I'm now allowing http into my protected network of course...
- Next message: phreeskier_at_gmail.com: "AUTHORIZATION with WINDOWS AUTHENTICATION -- HELP!!"
- Previous message: Phil: "IIS and domain security"
- Next in thread: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Reply: David Wang [Msft]: "Re: Ideas on deferring authentication?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
