Solved

Restrict access to Word docs w/in a site

Posted on 2004-04-07
7
142 Views
Last Modified: 2013-12-04
My company has security set up on our internal sites that do not allow people to enter hard-coded asp files and directly access them.  It forces them to go through the log-in screen and follow the proper links to get to what they need.  It has been working great for 2 years now.

The problem is, we have links to word and excel docs on our site.  The security we have set up on asp does not work on these files (because the asp files have an include that provides that security).  Is there some way to put this kind of control at the site level?  I looked into global.asa files but those only work on asp files.

Any ideas?

0
Comment
Question by:ags00
  • 2
  • 2
  • 2
7 Comments
 
LVL 16

Expert Comment

by:JamesDS
ID: 10781142
ags00

You need to set the NTFS permissions on the folders where the files actually exist - or on the files themselves (although this will get complicated)

You can use the same method for securing the ASP as well and save yourself all that extra security coding and session variable checking.

Cheers

JamesDS
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10781524
Understanding NTFS permissions:
http://www.windowsitlibrary.com/Content/592/1.html

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open
0
 

Author Comment

by:ags00
ID: 10783086
Either this is not what I need or I am not understanding how to use it.  If I restrict the NTFS permissions how would that work?  If someone accesses the pages through the proper channels, great.  If they hard code the location in their browser, they should not be able to see the page, whether they get a "page can't be displayed" or it redirects them to the last page they were on.  To me it seems like the only thing I can do with NTFS is completely restrict or grant access, regardless of how they got to the page.
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 
LVL 16

Expert Comment

by:JamesDS
ID: 10783123
aha, sorry

No you can't apply the session security settings to files in that manner.

Cheers

JamesDS
0
 

Author Comment

by:ags00
ID: 10783156
I figured - that would be too easy :-)

I think the only solution to this is SSL... do you know if that is on your site, if you can directly access documents or not?
0
 
LVL 12

Accepted Solution

by:
trywaredk earned 200 total points
ID: 10790113
Step-by-Step Guide to Public Key-Based Client Authentication in Internet Explorer - Nice little overview from Microsoft going through the configuration of IE when you want certificate based authentication using TLS/SSL. Only the client side is described here. 2 pages.
http://www.microsoft.com/windows2000/techinfo/planning/security/pubkeyie.asp 
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question