[Webinar] Streamline your web hosting managementRegister Today

  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 188
  • Last Modified:

Seperate passwords for seperate web apps

I have set up several users on my NT server and password protected
several of my web apps but when a user enters the logon and password
for one of the apps, he also gets access to the others.

Is there somewhere in IIS4.0 that allows me to specify which users
have access to which apps without declaring ip addresses and domain names?

1 Solution
It's so simple :
<li>Create some local NT usergroups (one for each app) ...
<li>Make the users members of the app-groups they're allowed to use ...
<li>Make sure this group and the administrators group are the <u>only</u> groups who have access to the folder containing the app. !! <i>(so remove all the other groups who have access there)</i>
<li> in the MMC for IIS 4 disable anonymous access for the web-folders (right-click the folder ; properties ; securety ; etc. )

The users now only can access the apps they're authorised for .... if they try to acces such an app they get an error screen, which you can customize with IIS 4 ... A real creative develloper uses a menu which checkes if the loged in user has rights for the app and shows only the apps a user can access ...
AttarSoftwareAuthor Commented:

Featured Post

2018 Annual Membership Survey

Here at Experts Exchange, we strive to give members the best experience. Help us improve the site by taking this survey today! (Bonus: Be entered to win a great tech prize for participating!)

Tackle projects and never again get stuck behind a technical roadblock.
Join Now