Solved

Auto Login for IIS Directory Security

Posted on 2004-04-06
3
219 Views
Last Modified: 2008-02-01
So here is the situation that I'm trying to solve here. We have a folder that contains a bunch of html files, and we don't want someone to be able to just type the URL of one of the html files and view them. I want to be able to have it so the only way anyone would be able to get to this folder and its contents is through a link on the CMS site that would validate them with its security and then validate them in IIS directory based on the site's security.  So far easy its been enough just turn on IIS Directory security. The problem comes in that the client has to login in to their site, but the client doesn't want to have another login pop-up; so that once they've logged in once, all other security checks should be verified through the CMS site's security. I tried working with ASP.NET authenication stuff all day yesterday and wasn't able to get it to work.

The Folder Structure would be:
Root (Public)
-Login.aspx (file used to authenticate and redirect to Example1 folder)
->Example1 (Secured)
0
Comment
Question by:icompass
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 37

Expert Comment

by:meverest
ID: 10770499
you can use an isapi filter on the web site to handle authentication.  that way so loing as the images folder is on the same hostname as the main site, the auth credentials submitted to begin with will be presented by the client browser.

enter "isapi authentication" in google to find some examples of this.

0
 
LVL 14

Expert Comment

by:alimu
ID: 10821483
you could also request secure content via a component that runs under a service account.  Access to component to depend upon successful CMS authentication.  Doesn't give you fantastic audit trails and also depends on what kind of access you have to the server hosting the CMS site.
Are the secure folder and the CMS area in the same site? On the same server? Using NT authentication?
AJ.
0
 
LVL 1

Accepted Solution

by:
parturi earned 500 total points
ID: 10851519
I think this will help you

http://www.eggheadcafe.com/articles/20010126.asp

regards,
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Prologue It is often required to host multiple websites on a single instance of IIS, mostly in development environments instead of on production servers. I am sure it is not much a preferred solution on production servers but this is at least a pos…
A phishing scam that claims a recipient’s credit card details have been “suspended” is the latest trend in spoof emails.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question