Solved

Auto Login for IIS Directory Security

Posted on 2004-04-06
3
220 Views
Last Modified: 2008-02-01
So here is the situation that I'm trying to solve here. We have a folder that contains a bunch of html files, and we don't want someone to be able to just type the URL of one of the html files and view them. I want to be able to have it so the only way anyone would be able to get to this folder and its contents is through a link on the CMS site that would validate them with its security and then validate them in IIS directory based on the site's security.  So far easy its been enough just turn on IIS Directory security. The problem comes in that the client has to login in to their site, but the client doesn't want to have another login pop-up; so that once they've logged in once, all other security checks should be verified through the CMS site's security. I tried working with ASP.NET authenication stuff all day yesterday and wasn't able to get it to work.

The Folder Structure would be:
Root (Public)
-Login.aspx (file used to authenticate and redirect to Example1 folder)
->Example1 (Secured)
0
Comment
Question by:icompass
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 37

Expert Comment

by:meverest
ID: 10770499
you can use an isapi filter on the web site to handle authentication.  that way so loing as the images folder is on the same hostname as the main site, the auth credentials submitted to begin with will be presented by the client browser.

enter "isapi authentication" in google to find some examples of this.

0
 
LVL 14

Expert Comment

by:alimu
ID: 10821483
you could also request secure content via a component that runs under a service account.  Access to component to depend upon successful CMS authentication.  Doesn't give you fantastic audit trails and also depends on what kind of access you have to the server hosting the CMS site.
Are the secure folder and the CMS area in the same site? On the same server? Using NT authentication?
AJ.
0
 
LVL 1

Accepted Solution

by:
parturi earned 500 total points
ID: 10851519
I think this will help you

http://www.eggheadcafe.com/articles/20010126.asp

regards,
0

Featured Post

[Webinar] How Hackers Steal Your Credentials

Do You Know How Hackers Steal Your Credentials? Join us and Skyport Systems to learn how hackers steal your credentials and why Active Directory must be secure to stop them. Thursday, July 13, 2017 10:00 A.M. PDT

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here are the symptoms: You start receiving calls from users that one of your legacy web apps isn't coming up, so you log into your IIS 5 server to check it out.  When you pull up the services, you notice that the WWW Publishing service isn't runn…
Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
In this video, viewers will be given step by step instructions on adjusting mouse, pointer and cursor visibility in Microsoft Windows 10. The video seeks to educate those who are struggling with the new Windows 10 Graphical User Interface. Change Cu…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question