Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Restrict access to Word docs w/in a site

Posted on 2004-04-07
7
143 Views
Last Modified: 2013-12-04
My company has security set up on our internal sites that do not allow people to enter hard-coded asp files and directly access them.  It forces them to go through the log-in screen and follow the proper links to get to what they need.  It has been working great for 2 years now.

The problem is, we have links to word and excel docs on our site.  The security we have set up on asp does not work on these files (because the asp files have an include that provides that security).  Is there some way to put this kind of control at the site level?  I looked into global.asa files but those only work on asp files.

Any ideas?

0
Comment
Question by:ags00
  • 2
  • 2
  • 2
7 Comments
 
LVL 16

Expert Comment

by:JamesDS
ID: 10781142
ags00

You need to set the NTFS permissions on the folders where the files actually exist - or on the files themselves (although this will get complicated)

You can use the same method for securing the ASP as well and save yourself all that extra security coding and session variable checking.

Cheers

JamesDS
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10781524
Understanding NTFS permissions:
http://www.windowsitlibrary.com/Content/592/1.html

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open
0
 

Author Comment

by:ags00
ID: 10783086
Either this is not what I need or I am not understanding how to use it.  If I restrict the NTFS permissions how would that work?  If someone accesses the pages through the proper channels, great.  If they hard code the location in their browser, they should not be able to see the page, whether they get a "page can't be displayed" or it redirects them to the last page they were on.  To me it seems like the only thing I can do with NTFS is completely restrict or grant access, regardless of how they got to the page.
0
The Eight Noble Truths of Backup and Recovery

How can IT departments tackle the challenges of a Big Data world? This white paper provides a roadmap to success and helps companies ensure that all their data is safe and secure, no matter if it resides on-premise with physical or virtual machines or in the cloud.

 
LVL 16

Expert Comment

by:JamesDS
ID: 10783123
aha, sorry

No you can't apply the session security settings to files in that manner.

Cheers

JamesDS
0
 

Author Comment

by:ags00
ID: 10783156
I figured - that would be too easy :-)

I think the only solution to this is SSL... do you know if that is on your site, if you can directly access documents or not?
0
 
LVL 12

Accepted Solution

by:
trywaredk earned 200 total points
ID: 10790113
Step-by-Step Guide to Public Key-Based Client Authentication in Internet Explorer - Nice little overview from Microsoft going through the configuration of IE when you want certificate based authentication using TLS/SSL. Only the client side is described here. 2 pages.
http://www.microsoft.com/windows2000/techinfo/planning/security/pubkeyie.asp 
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Permission issue? 10 73
Change Polcy settings to defaults 7 90
recommend secure & efficient Unix LDAP (equiv of Windows AD) 6 110
Removing local Admin rights from users 8 79
No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
OfficeMate Freezes on login or does not load after login credentials are input.
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question