Solved

Frontpage Permissions

Posted on 1998-08-29
3
272 Views
Last Modified: 2013-12-25
We have an Intranet using Front page.  When I create separate Webs below the root web I want to set the permissions on the folder.  When I set the permissions to "browse only" or "author and browse" it resets the permissions back to "administer, author, and browse"  This is obviously not good for security.  Anybody have an idea how I can fix this?
0
Comment
Question by:jimmyr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 6

Expert Comment

by:ckayter
ID: 1854652
What are you using for a Server? FP depends on the Web Server's security functions. And are FP server extensions installed on the server?

More information, please...

Colleen

0
 

Author Comment

by:jimmyr
ID: 1854653
It is Internet Info Server 3.0.  We choose this version since there were so many reports of bugs we thought we would wait for the patch.  We are using server extensions.  
0
 
LVL 6

Accepted Solution

by:
ckayter earned 100 total points
ID: 1854654
I was about to type out a very detailed answer for administering security when I reread your question... I'm not sure we're talking about security for separate webs or page permissions...

Are the "separate webs" below the root web really separate webs? Do they have their own domain name? And when you open the web in FP for editing, do you open the root web and then select a subdirectory? Or can you open the "separate web" as a standalone?

If you can open the separate web as a standalone, then you can set security for it separately... First, to change security settings, you must open the web on the intranet web server, not your local copy. Secondly, do you have administrator permissions on your intranet web server? It is possible to have administrative permissions locally (on your PC) and only have authoring permissions (publish/edit content but not change permissions) on the IIS Server. Assuming you have all permissions necessary...

It sounds like you've already done this, but I'll repeat it briefly for anyone else following this thread...

Open the web on your IIS server in FP Explorer. Select Permissions from the Tools Menu. Verify that the web is set to "unique permissions."

Now, you need to specify who gets what. You can set User permissions individually (which would be cumbersome) and you can set Group permissions. On IIS 3, you cannot set permissions based on IP address. But since you're using IIS, things are simplified a little by using the lists already established on the NT Server (assuming NT is also your network server).

Let's begin by setting security for the group(s):

On the Groups Tab in the Permissions Dialog Box, review the list of groups (if any). Add, Edit, or Remove Groups here. Set groups to "browse only" unless "authorized web authors" have already been grouped (if not, you'll want to change these on the Users Tab).

On the Users Tab, review the list of users and add or remove users. All users on this list have the same level of permissions. You can give various users different levels of permissions by closing and reopening the dialog box (I know, that's a pretty lame way to manage the lists... and of course, such an obvious procedure!)

You can also change an individual's permissions by selecting the user name then clicking on Edit...
-----------------------------------------

If you are the webmaster and have administrative permissions for the IIS server, you might want to run the FP Server Administrator and click "Check and Fix" for each port...

You'll need to run this app from the web server. The app is fpsrvadm.exe and is in the FP folder.

I'm assuming you are not the only author since you want to be able to give author and browse permissions. FP Server Administrator allows you to disable authoring for specific ports (which locks down the web). You might find that useful for maximum security between publishing sessions.

While in the Server Administrator, you can check to see which users have administrative permissions on the server.
------------------------------------

Forgive me if some of this is "teaching my grandmother to suck eggs" (as my husband would say when I explain something he already knows). Hopefully, there is something here that you haven't tried.

Colleen


0

Featured Post

Major Incident Management Communications

Major incidents and IT service outages cost companies millions. Often the solution to minimizing damage is automated communication. Find out more in our Major Incident Management Communications infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Get to know the ins and outs of building a web-based ERP system for your enterprise. Development timeline, technology, and costs outlined.
Dramatic changes are revolutionizing how we build and use technology. Every company is automating, digitizing, and modernizing operations. We need a better, more connected way to work together as teams so we can harness the insights from our system…
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
The viewer will learn how to dynamically set the form action using jQuery.

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question