Solved

specify account other than iuser for .asp page?

Posted on 2004-09-03
6
472 Views
Last Modified: 2008-02-01
is it possible to have a .asp page (only one) handled by iis in a different security context than iuser? i want one (only) script on an .asp page to have access to a folder that i have explicitly denied access to the iuser account (ie i want this asp page to operate as a user with higher credentials).

iis 6 on win2k3 server

thanks in advance
0
Comment
Question by:jlathigee
  • 4
6 Comments
 
LVL 15

Accepted Solution

by:
mattisflones earned 125 total points
ID: 11979068
Yes, put the page in a virtual subdir of yor site and set the secsettings as you want there... You can NOT set settings for a single page in a site by itself in IIS.
0
 
LVL 36

Expert Comment

by:Zyloch
ID: 11979074
Hi

Ahh, well, just have this in your protected ASP page:

<%
Dim siteBase = "http://www.yourdomain.com/"
If Request.ServerVariables["HTTP_REFERER"] <> siteBase & "yourhigherpermissionpage.asp" Then
    Response.Redirect(Request.ServerVariables["HTTP_REFERER"])
End If
%>

Regards,
Zyloch
0
 
LVL 15

Expert Comment

by:mattisflones
ID: 11979079
Or.. just do a include of the page..
0
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

 
LVL 15

Expert Comment

by:mattisflones
ID: 11979125
Glad i could help! :-)
0
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 11982695
Though the answer has already been accepted I thought I would post a correction:

You *can* set the anonymous user identity for a single page in IIS. You can set Authentication methods at the page level and this is where you specify the account used for anonymous access (if you are using anonymous).

For this particular question there is no need to create an entire vdir to host a single page, simply change the anonymous user account for that specific page.

Dave Dietz
0
 
LVL 15

Expert Comment

by:mattisflones
ID: 11989629
Dave, how do you do that secure? That would be very interesting to know..
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Today I came across an interesting issue that had me pulling my hair out.  I was troubleshooting a new internal web site which uses integrated security instead of anonymous.  When browsing the site from my laptop, I was able to access it with no iss…
If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question