Solved

Auto Login for IIS Directory Security

Posted on 2004-04-06
3
217 Views
Last Modified: 2008-02-01
So here is the situation that I'm trying to solve here. We have a folder that contains a bunch of html files, and we don't want someone to be able to just type the URL of one of the html files and view them. I want to be able to have it so the only way anyone would be able to get to this folder and its contents is through a link on the CMS site that would validate them with its security and then validate them in IIS directory based on the site's security.  So far easy its been enough just turn on IIS Directory security. The problem comes in that the client has to login in to their site, but the client doesn't want to have another login pop-up; so that once they've logged in once, all other security checks should be verified through the CMS site's security. I tried working with ASP.NET authenication stuff all day yesterday and wasn't able to get it to work.

The Folder Structure would be:
Root (Public)
-Login.aspx (file used to authenticate and redirect to Example1 folder)
->Example1 (Secured)
0
Comment
Question by:icompass
3 Comments
 
LVL 37

Expert Comment

by:meverest
ID: 10770499
you can use an isapi filter on the web site to handle authentication.  that way so loing as the images folder is on the same hostname as the main site, the auth credentials submitted to begin with will be presented by the client browser.

enter "isapi authentication" in google to find some examples of this.

0
 
LVL 14

Expert Comment

by:alimu
ID: 10821483
you could also request secure content via a component that runs under a service account.  Access to component to depend upon successful CMS authentication.  Doesn't give you fantastic audit trails and also depends on what kind of access you have to the server hosting the CMS site.
Are the secure folder and the CMS area in the same site? On the same server? Using NT authentication?
AJ.
0
 
LVL 1

Accepted Solution

by:
parturi earned 500 total points
ID: 10851519
I think this will help you

http://www.eggheadcafe.com/articles/20010126.asp

regards,
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Required permissions cannot be acquired 6 52
IIS Log files on Exchange 2013 server 6 168
Web site error 3 44
IIS 8.5 WebDav Shared Handler Mappings 6 42
Here are the symptoms: You start receiving calls from users that one of your legacy web apps isn't coming up, so you log into your IIS 5 server to check it out.  When you pull up the services, you notice that the WWW Publishing service isn't runn…
Lync server 2013 or Skype for business Backup Service Error ID 4049 – After File Share Migration

856 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question