Solved

Auto Login for IIS Directory Security

Posted on 2004-04-06
3
213 Views
Last Modified: 2008-02-01
So here is the situation that I'm trying to solve here. We have a folder that contains a bunch of html files, and we don't want someone to be able to just type the URL of one of the html files and view them. I want to be able to have it so the only way anyone would be able to get to this folder and its contents is through a link on the CMS site that would validate them with its security and then validate them in IIS directory based on the site's security.  So far easy its been enough just turn on IIS Directory security. The problem comes in that the client has to login in to their site, but the client doesn't want to have another login pop-up; so that once they've logged in once, all other security checks should be verified through the CMS site's security. I tried working with ASP.NET authenication stuff all day yesterday and wasn't able to get it to work.

The Folder Structure would be:
Root (Public)
-Login.aspx (file used to authenticate and redirect to Example1 folder)
->Example1 (Secured)
0
Comment
Question by:icompass
3 Comments
 
LVL 37

Expert Comment

by:meverest
ID: 10770499
you can use an isapi filter on the web site to handle authentication.  that way so loing as the images folder is on the same hostname as the main site, the auth credentials submitted to begin with will be presented by the client browser.

enter "isapi authentication" in google to find some examples of this.

0
 
LVL 14

Expert Comment

by:alimu
ID: 10821483
you could also request secure content via a component that runs under a service account.  Access to component to depend upon successful CMS authentication.  Doesn't give you fantastic audit trails and also depends on what kind of access you have to the server hosting the CMS site.
Are the secure folder and the CMS area in the same site? On the same server? Using NT authentication?
AJ.
0
 
LVL 1

Accepted Solution

by:
parturi earned 500 total points
ID: 10851519
I think this will help you

http://www.eggheadcafe.com/articles/20010126.asp

regards,
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

What is an ISAPI filter?   •      It's an assembly (.dll file) that can add or change the way IIS works.   •      They can be enabled globally for your web server or on a site-by-site basis.   When the IIS server receives a request, enabling the ISAPI fi…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
This is used to tweak the memory usage for your computer, it is used for servers more so than workstations but just be careful editing registry settings as it may cause irreversible results. I hold no responsibility for anything you do to the regist…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now