Windows 2000 Server, IIS 5.0
I have a website that allows anonymous authentication. I have set up web sharing on the root folder (inetpub/wwwroot/SiteRoot)
Properties on the Web Sharing alias tab are Read, Write, Script source access, and Directory browsing...Application permissions are Execute.
NTFS security on the \SiteRoot folder is Administrators - Full control; Everyone - Read & Execute, List Folder Contents, and Read; SYSTEM - Full Control. The box is also checked to Allow inheritable permissions to propagate...
I can access the web folder with all users that can get to the site.
Desired end state:
I would like to use web folders to allow remote administrators to upload and edit website files. I do not want normal site users to be able to connect to the web folder, or see the directory at all...not even read only access. I would like everyone who attempts to open the web folder to be prompted for user login at each folder access.
I don't know if I am spelling this out right, or if it is even possible to separate webfolder permissions from NT permissions but I guess we shall see. Thanks in advance for your help ;o)