|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
Using "A share located on another computer" AND Authenticated accehosting a single site with a virtual directory for each employee. Content for each is stored on another server and as such I'm settign the virtual directory resource content to "A share located on another computer", and providing the path and credentials for a public web user account that has read access to this resource. This works well for the most part, but I have a user that would like to secure the content on their site. I thought this would be rather simple, but at this point it has me stumped. I tried setting the public web user account to have read access to the physical website folder using "This folder only" in the ACL. This forces a prompt for credentials when browsing to the site as it attempts to read default.htm. However, providing user credentials with full control of the site content does not work. Maybe I'm doing something completely wrong? Does the user configured to allow access to the share have to have read to the entire site to be able to publish it. If so, is there another way I force authentication? You are doing to have to use Kerberos authentication and delegation (see
http://www.adopenstatic.com/faq on how to configure this), and you are going to have to tell IIS not to use a fixed account for accessing those folders you want to secure. Cheers Ken Show quoteHide quote "paoutdoorsman" <paoutdoors***@discussions.microsoft.com> wrote in message news:D10CC898-6A25-4A10-B4B0-3C4A6A10A939@microsoft.com... > To publish personal web sites, I'm using a Windows 2003 / IIS 6 web server > hosting a single site with a virtual directory for each employee. > > Content for each is stored on another server and as such I'm settign the > virtual directory resource content to "A share located on another > computer", > and providing the path and credentials for a public web user account that > has > read access to this resource. > > This works well for the most part, but I have a user that would like to > secure the content on their site. I thought this would be rather simple, > but > at this point it has me stumped. > > I tried setting the public web user account to have read access to the > physical website folder using "This folder only" in the ACL. This forces > a > prompt for credentials when browsing to the site as it attempts to read > default.htm. However, providing user credentials with full control of the > site content does not work. > > Maybe I'm doing something completely wrong? Does the user configured to > allow access to the share have to have read to the entire site to be able > to > publish it. If so, is there another way I force authentication? 
Other interesting topics
Certificate Mapping - Debugging
iis 6 ssl redirect initial login encrypted? Unable to access site with FQDN Restricting access from my site to other sites web site access OK by IP but not by name IIS requiring Client "Machine" Certificate... possible? Client certificates one client certificate able to access two websites Managing Virtual Directories in IIS Cannot Access Site when away from Office w/VPN, on Domain Machine, Fine on non Domain Machiens... |
|||||||||||||||||||||||
