Need to restrict access to a single web page within a site
in [IIS]
|
From: shaun on 8 Apr 2010 11:11 We have a web site running on IIS7.5, I am trying to limit access to a single web page to usres on my domain and the rest of the web site to be accessable publicly. I removed the IUSRS account from the NTFS permissions on the web page file and the page is still accessable by the public, if I remove the server\Users group then the web page is not accesable but adding my domain account to the file will not allow me to access the web page. Is there a way to restrict access via NTFS permissions to certain web pages or a way to do this in IIS via the request filtering feature? Thanks Shaun
From: Chris M on 9 Apr 2010 04:17 On 08/04/2010 16:13, shaun(a)TNS wrote: > We have a web site running on IIS7.5, I am trying to limit access to a > single web page to usres on my domain and the rest of the web site to be > accessable publicly. I removed the IUSRS account from the NTFS permissions > on the web page file and the page is still accessable by the public, if I > remove the server\Users group then the web page is not accesable but adding > my domain account to the file will not allow me to access the web page. Is > there a way to restrict access via NTFS permissions to certain web pages or a > way to do this in IIS via the request filtering feature? If the page is in its own folder by itself, and your domain users will always be connecting from the same network, you could restrict it by client IP address. -- Chris M.
From: shaun on 9 Apr 2010 18:40 All the web pages are stored in the same folder. "Chris M" wrote: > On 08/04/2010 16:13, shaun(a)TNS wrote: > > We have a web site running on IIS7.5, I am trying to limit access to a > > single web page to usres on my domain and the rest of the web site to be > > accessable publicly. I removed the IUSRS account from the NTFS permissions > > on the web page file and the page is still accessable by the public, if I > > remove the server\Users group then the web page is not accesable but adding > > my domain account to the file will not allow me to access the web page. Is > > there a way to restrict access via NTFS permissions to certain web pages or a > > way to do this in IIS via the request filtering feature? > > If the page is in its own folder by itself, and your domain users will > always be connecting from the same network, you could restrict it by > client IP address. > > -- > Chris M. > . >
|
Pages: 1 Prev: IIS7 / Basic Authentication Next: Need to restrict access to a single web page within a site |