|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
IIS 6.0 Integrated Securityscenario and requirements? And, if it cannot be done, can you tell me why? This was easy to do in IIS 4.0 and 5.0. All you had to do was set the web site and connection string to use Integrated Security. Scenario 1. Users are all on the same network and authenticate to the same AD domain by logging into their Windows XP workstations (which are members of the same AD as the users). 2. Users access an internal web site located on a Windows 2003 web server in the same AD domain as the users. 3. Web server accesses data on an MS SQL server 2000 database in the same AD domain as the web server and users. Requirements 1. After the users log into their workstations, they are not asked to log onto the website. 2. Users are granted access to the website by using NTSF permissions on the web site's folder. 3. The web site accesses the data stored on the SQL server using the integrated security. Not with some service account, but with the account of the user logged onto the workstation. I think this article may help.
http://support.microsoft.com/Default.aspx?id=319723 -- Show quoteHide quoteCheers Chris Crowe [IIS MVP 1997 -> 2006] http://blog.crowe.co.nz ------------------------------------------------ "Bradley Morris" <Bradley Mor***@discussions.microsoft.com> wrote in message news:54CDE733-79EA-433D-93E6-6301B8C96CA5@microsoft.com... > Can someone please explain to how to configure IIS 6.0 for the following > scenario and requirements? And, if it cannot be done, can you tell me why? > > This was easy to do in IIS 4.0 and 5.0. All you had to do was set the web > site and connection string to use Integrated Security. > > Scenario > 1. Users are all on the same network and authenticate to the same AD > domain > by logging into their Windows XP workstations (which are members of the > same > AD as the users). > 2. Users access an internal web site located on a Windows 2003 web server > in the same AD domain as the users. > 3. Web server accesses data on an MS SQL server 2000 database in the same > AD domain as the web server and users. > > Requirements > 1. After the users log into their workstations, they are not asked to log > onto the website. > 2. Users are granted access to the website by using NTSF permissions on > the > web site's folder. > 3. The web site accesses the data stored on the SQL server using the > integrated security. Not with some service account, but with the account > of > the user logged onto the workstation. > 
Other interesting topics
Kerberos error KDC_ERR_BADOPTION
Help with password prompt problem downloading exe file on server 2003 iis with sp1 SSL and Load Balanced Servers (Revocation message) recovering password stored with reversible encryption? Run IIS as admin to write to Active Directory - security risk? Require Client Certificates and blank page Problems with ColdFusion child Folder named system disappears then cant delete its parent SSL on an IIS cluster |
|||||||||||||||||||||||
