Solved

specify account other than iuser for .asp page?

Posted on 2004-09-03
6
477 Views
Last Modified: 2008-02-01
is it possible to have a .asp page (only one) handled by iis in a different security context than iuser? i want one (only) script on an .asp page to have access to a folder that i have explicitly denied access to the iuser account (ie i want this asp page to operate as a user with higher credentials).

iis 6 on win2k3 server

thanks in advance
0
Comment
Question by:jlathigee
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
6 Comments
 
LVL 15

Accepted Solution

by:
mattisflones earned 125 total points
ID: 11979068
Yes, put the page in a virtual subdir of yor site and set the secsettings as you want there... You can NOT set settings for a single page in a site by itself in IIS.
0
 
LVL 36

Expert Comment

by:Zyloch
ID: 11979074
Hi

Ahh, well, just have this in your protected ASP page:

<%
Dim siteBase = "http://www.yourdomain.com/"
If Request.ServerVariables["HTTP_REFERER"] <> siteBase & "yourhigherpermissionpage.asp" Then
    Response.Redirect(Request.ServerVariables["HTTP_REFERER"])
End If
%>

Regards,
Zyloch
0
 
LVL 15

Expert Comment

by:mattisflones
ID: 11979079
Or.. just do a include of the page..
0
Major Incident Management Communications

Major incidents and IT service outages cost companies millions. Often the solution to minimizing damage is automated communication. Find out more in our Major Incident Management Communications infographic.

 
LVL 15

Expert Comment

by:mattisflones
ID: 11979125
Glad i could help! :-)
0
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 11982695
Though the answer has already been accepted I thought I would post a correction:

You *can* set the anonymous user identity for a single page in IIS. You can set Authentication methods at the page level and this is where you specify the account used for anonymous access (if you are using anonymous).

For this particular question there is no need to create an entire vdir to host a single page, simply change the anonymous user account for that specific page.

Dave Dietz
0
 
LVL 15

Expert Comment

by:mattisflones
ID: 11989629
Dave, how do you do that secure? That would be very interesting to know..
0

Featured Post

Business Impact of IT Communications

What are the business impacts of how well businesses communicate during an IT incident? Targeting, speed, and transparency all matter. Find out more in this infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
URL Redirect using IIS v8 4 70
TLS/SSL Diable 3DES ciper suites 4 95
PCI Scan on IIS Remediation not working 1 110
ColdFusion 9 CF Administrator and Request Filtering 3 53
First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question