Solved

Frontpage Permissions

Posted on 1998-08-29
3
267 Views
Last Modified: 2013-12-25
We have an Intranet using Front page.  When I create separate Webs below the root web I want to set the permissions on the folder.  When I set the permissions to "browse only" or "author and browse" it resets the permissions back to "administer, author, and browse"  This is obviously not good for security.  Anybody have an idea how I can fix this?
0
Comment
Question by:jimmyr
  • 2
3 Comments
 
LVL 6

Expert Comment

by:ckayter
ID: 1854652
What are you using for a Server? FP depends on the Web Server's security functions. And are FP server extensions installed on the server?

More information, please...

Colleen

0
 

Author Comment

by:jimmyr
ID: 1854653
It is Internet Info Server 3.0.  We choose this version since there were so many reports of bugs we thought we would wait for the patch.  We are using server extensions.  
0
 
LVL 6

Accepted Solution

by:
ckayter earned 100 total points
ID: 1854654
I was about to type out a very detailed answer for administering security when I reread your question... I'm not sure we're talking about security for separate webs or page permissions...

Are the "separate webs" below the root web really separate webs? Do they have their own domain name? And when you open the web in FP for editing, do you open the root web and then select a subdirectory? Or can you open the "separate web" as a standalone?

If you can open the separate web as a standalone, then you can set security for it separately... First, to change security settings, you must open the web on the intranet web server, not your local copy. Secondly, do you have administrator permissions on your intranet web server? It is possible to have administrative permissions locally (on your PC) and only have authoring permissions (publish/edit content but not change permissions) on the IIS Server. Assuming you have all permissions necessary...

It sounds like you've already done this, but I'll repeat it briefly for anyone else following this thread...

Open the web on your IIS server in FP Explorer. Select Permissions from the Tools Menu. Verify that the web is set to "unique permissions."

Now, you need to specify who gets what. You can set User permissions individually (which would be cumbersome) and you can set Group permissions. On IIS 3, you cannot set permissions based on IP address. But since you're using IIS, things are simplified a little by using the lists already established on the NT Server (assuming NT is also your network server).

Let's begin by setting security for the group(s):

On the Groups Tab in the Permissions Dialog Box, review the list of groups (if any). Add, Edit, or Remove Groups here. Set groups to "browse only" unless "authorized web authors" have already been grouped (if not, you'll want to change these on the Users Tab).

On the Users Tab, review the list of users and add or remove users. All users on this list have the same level of permissions. You can give various users different levels of permissions by closing and reopening the dialog box (I know, that's a pretty lame way to manage the lists... and of course, such an obvious procedure!)

You can also change an individual's permissions by selecting the user name then clicking on Edit...
-----------------------------------------

If you are the webmaster and have administrative permissions for the IIS server, you might want to run the FP Server Administrator and click "Check and Fix" for each port...

You'll need to run this app from the web server. The app is fpsrvadm.exe and is in the FP folder.

I'm assuming you are not the only author since you want to be able to give author and browse permissions. FP Server Administrator allows you to disable authoring for specific ports (which locks down the web). You might find that useful for maximum security between publishing sessions.

While in the Server Administrator, you can check to see which users have administrative permissions on the server.
------------------------------------

Forgive me if some of this is "teaching my grandmother to suck eggs" (as my husband would say when I explain something he already knows). Hopefully, there is something here that you haven't tried.

Colleen


0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Foreword (July, 2015) Since I first wrote this article, years ago, a great many more people have begun using the internet.  They are coming online from every part of the globe, learning, reading, shopping and spending money at an ever-increasing ra…
I've been asked to discuss some of the UX activities that I'm using with my team. Here I will share some details about how we approach UX projects.
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
Any person in technology especially those working for big companies should at least know about the basics of web accessibility. Believe it or not there are even laws in place that require businesses to provide such means for the disabled and aging p…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now