Authentication forwarden to another IIS server.

Hello, I've got an Apache Webserver where people are authenticated with PHP, MYSql. When a user is valid it can download files from another public IIS server. Access is denied when authentication is not valid on webserver 1.

I want people to download directly from the second server, because of the traffic.  In short, I grant people access to a server when they're authenticated on another.

Has anybody some suggestions how I could achieve this? Im prettty familiar with Apache, PHP, MySQL and stuff, but  I'm not so familiar with IIS.

Thanks for any help or suggestions.
TommienbpAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

fz2hqsCommented:
Sounds pretty bespoke so suspect there is nothing off the shelf. An idea:

Have all downloads go through some sort of asp / php page that page should do some negotiating with the apache server. Maybe your apache server would serve the link

http://iisserver.com/download.asp?userid=MYUSERID?file=MYFILE.DAT?IP=123.123.123.123

maybe some other parameters, you use the userid and ip to make a request to some sort of webservice on the Apache box - or better still directly to the MySQL database to confirm the bits are correct, then and only then you serve the data file. The ideal way of doing this on IIS is via an ISAPI  DLL however you will need to know something like C, VB or Delphi
0
TommienbpAuthor Commented:
Hey fz2hqs thanks for your reply, but I think that would be too complicated.

Is there a way I could grant just one IP (the one of the apache server) access to the IIS Server? Then it would be easy. I could PHP get the files to the apache server and put them there somewhere for the authenticated user.

Only problem is the traffic for the apache server. I'd rather have them downloaded directly from the IIS Server.
0
fz2hqsCommented:
You say it yourself that you are stuck in a catch 22 scenario. On one hand you want PHP on the apache server to manage everything, but you want to avoid the overhead of it being served.

A sanity check - Step back though and look at this another way, you are clearly worried about the Apache server gettin processor or memory bound which is why you are offloading this. This overhead really isn't that great, if you are worried about bandwidth then stop - it makes no odds what server it comes from, doubtless both have 10/100Mbps cards and are going to be bound by the restriction of the size of your link

0
Cloud Class® Course: MCSA MCSE Windows Server 2012

This course teaches how to install and configure Windows Server 2012 R2.  It is the first step on your path to becoming a Microsoft Certified Solutions Expert (MCSE).

TommienbpAuthor Commented:
It is more the extra costs of more bandwidth at my provider.
0
fz2hqsCommented:
Then it makes no difference which server it comes from surely?
0
TommienbpAuthor Commented:
Well, the other one is not mine. :) (p.s. I'm dutch ;) )
0
fz2hqsCommented:
I see - I assumed the two servers where physically in the same place.

Bar some clever coding I can not see a quick win for you. You could download or buy a cheap ISAPI filter that you can put on teh IIS Server that will make URL's unguessable i.e.

http://www.server.com/downloads/applications/client/install.exe
..might translate to..
http://www.server.com/asdjo893yh2h3ukh8ehfwa

It is not the exact solution you want, but will offer some amount of protection
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Web Servers

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.