Solved

Frontpage Permissions

Posted on 1998-08-29
3
264 Views
Last Modified: 2013-12-25
We have an Intranet using Front page.  When I create separate Webs below the root web I want to set the permissions on the folder.  When I set the permissions to "browse only" or "author and browse" it resets the permissions back to "administer, author, and browse"  This is obviously not good for security.  Anybody have an idea how I can fix this?
0
Comment
Question by:jimmyr
  • 2
3 Comments
 
LVL 6

Expert Comment

by:ckayter
Comment Utility
What are you using for a Server? FP depends on the Web Server's security functions. And are FP server extensions installed on the server?

More information, please...

Colleen

0
 

Author Comment

by:jimmyr
Comment Utility
It is Internet Info Server 3.0.  We choose this version since there were so many reports of bugs we thought we would wait for the patch.  We are using server extensions.  
0
 
LVL 6

Accepted Solution

by:
ckayter earned 100 total points
Comment Utility
I was about to type out a very detailed answer for administering security when I reread your question... I'm not sure we're talking about security for separate webs or page permissions...

Are the "separate webs" below the root web really separate webs? Do they have their own domain name? And when you open the web in FP for editing, do you open the root web and then select a subdirectory? Or can you open the "separate web" as a standalone?

If you can open the separate web as a standalone, then you can set security for it separately... First, to change security settings, you must open the web on the intranet web server, not your local copy. Secondly, do you have administrator permissions on your intranet web server? It is possible to have administrative permissions locally (on your PC) and only have authoring permissions (publish/edit content but not change permissions) on the IIS Server. Assuming you have all permissions necessary...

It sounds like you've already done this, but I'll repeat it briefly for anyone else following this thread...

Open the web on your IIS server in FP Explorer. Select Permissions from the Tools Menu. Verify that the web is set to "unique permissions."

Now, you need to specify who gets what. You can set User permissions individually (which would be cumbersome) and you can set Group permissions. On IIS 3, you cannot set permissions based on IP address. But since you're using IIS, things are simplified a little by using the lists already established on the NT Server (assuming NT is also your network server).

Let's begin by setting security for the group(s):

On the Groups Tab in the Permissions Dialog Box, review the list of groups (if any). Add, Edit, or Remove Groups here. Set groups to "browse only" unless "authorized web authors" have already been grouped (if not, you'll want to change these on the Users Tab).

On the Users Tab, review the list of users and add or remove users. All users on this list have the same level of permissions. You can give various users different levels of permissions by closing and reopening the dialog box (I know, that's a pretty lame way to manage the lists... and of course, such an obvious procedure!)

You can also change an individual's permissions by selecting the user name then clicking on Edit...
-----------------------------------------

If you are the webmaster and have administrative permissions for the IIS server, you might want to run the FP Server Administrator and click "Check and Fix" for each port...

You'll need to run this app from the web server. The app is fpsrvadm.exe and is in the FP folder.

I'm assuming you are not the only author since you want to be able to give author and browse permissions. FP Server Administrator allows you to disable authoring for specific ports (which locks down the web). You might find that useful for maximum security between publishing sessions.

While in the Server Administrator, you can check to see which users have administrative permissions on the server.
------------------------------------

Forgive me if some of this is "teaching my grandmother to suck eggs" (as my husband would say when I explain something he already knows). Hopefully, there is something here that you haven't tried.

Colleen


0

Featured Post

IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Read about why website design really matters in today's demanding market.
Password hashing is better than message digests or encryption, and you should be using it instead of message digests or encryption.  Find out why and how in this article, which supplements the original article on PHP Client Registration, Login, Logo…
This tutorial demonstrates how to identify and create boundary or building outlines in Google Maps. In this example, I outline the boundaries of an enclosed skatepark within a community park.  Login to your Google Account, then  Google for "Google M…
The viewer will get a basic understanding of what section 508 compliance can entail, learn about skip navigation links, alt text, transcripts, and font size controls.

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now