how to set permission on hosting server for aspnet user

Posted on 2005-03-02
Medium Priority
Last Modified: 2013-11-30
I have 'working' web application that will allow a user to select a .jpg file to upload both the selected file and a thumbnail of the file.  This all works fine on localhost, but when I deploy I get an access denied type error.  As the app is running with aspnet user rights on both local and the remote I have given, through IIS manager write access to correct directory for anonymous user and this seems to work as expected on  the localhost.

I publish the application via VS.net using the frontpage extenstions.  My question is if I have set the correct permission on locacal host with IIS manager, won't the permisisons on the directory in the web get copied to the remote server?  Unfortunately, the hosting company, Godaddy, doesn't provide much in the way of tech assistance for $8/mon. hosting fee, so I'm on my own there.  The only thing they are able to tell me is that I should have control over the directory permissions for dirs in my web and can set them with frontpage or IIS??

I'm pretty new to IIS and publish web sites, so I'm probably missing something pretty simple.  Thanks
Question by:backwaterdogs
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
LVL 18

Expert Comment

ID: 13443550
If you do not use authentication in your ASP.Net apps, all the file operations performed behalf of the ASPNET (if you use IIS 5) or NETWORK SERVICE (if you use IIS 6) user account. Generally, it is fine for browsing, but you are likely to get the "permission denied" error if you attempt to upload or delete a file or create a folder. This happens because these accounts have insufficient privileges for writing operations. To avoid this you should either:

1). Grant the ASPNET (in the case of IIS 5) or NETWORK SERVICE (in the case of IIS 6) user account permission for writing to the folder you selected for uploaded files. This is the easiest and most secure method. I recommend this for a public web application or if your application resides in a shared web hosting environment. Or,

2). Authenticate users and give the accounts and/or groups specific access permissions for the upload folder. I recommend this for corporate Intranet applications where it is easy to control each user account. In this case, you need to implement the Windows authentication for your web app and turn impersonation on in the web.config file:
 <identity impersonate="true">.


Author Comment

ID: 13444763
tushar - thanks!

I agree, i need to accomplish your option #1

<......1). Grant the ASPNET (in the case of IIS 5) or NETWORK SERVICE (in the case of IIS 6) user account permission for writing to the folder you selected for uploaded files. This is the easiest and most secure method. I recommend this for a public web application or if your application resides in a shared web hosting environment......>

My question is however, how can I accomplish this when I don't have access to the server running IIS?  I have done this on the localhost where I can manage both the computer and IIS, but the app runs on a server where I don't have this level of control.

The hosting company, godaddy, has implied that there is a way to 'carry' file/folder permissions on the web's directory structure when uploading it with frontpage extentions.  Is this true? If so, how?  In IIS on the localhost I have the approprate security access and the file upload routines workfine.  But, these permissions are not 'carried' along with the web to the remote host copying it?


Assisted Solution

dspanogle earned 750 total points
ID: 13445290
I jsut started with godaddy.  I know one way to set file folder permissions on the server - Use IE as your FTP application. use ftp://yourweb.com  and use the IE Log On using so you can enter your logon and  passwords. Right click the folder you want and select properties. You can set up permissions there. Not sure this will help but thought I would put in my 2Cents worth
CHALLENGE LAB: Troubleshooting Connectivity Issues

Goal: Fix the connectivity issue in the lab's AWS environment so that you can SSH into the provided EC2 instance.  


Author Comment

ID: 13446207
Thanks! great input, but when I try this the folders dialog doesn't have the security and there's message that says:

"This server does not support changing file permissions."

I'll godaddy support once more.

thanks again.  john

Expert Comment

ID: 13446252
Hum..  Well I am not using ASPNET so this is out of my area at this point. Good luck :)
LVL 18

Accepted Solution

tusharashah earned 750 total points
ID: 13446253
Also, you can try to use different FTP application out there, they also provide such security options.

smartftp & cuteftp are 2 good one I have heart of.

haven't use frontpage extenstion but there should be some permission setting within it too! check out if there is and try to set up securtiy there.


Author Comment

ID: 13450514
thanks, gents.

I'll try another ftp tool to see what it offers.  If that gets me nowhere I did find another hosting serverce www.discountasp.net that has a very slick interface to manage the server, including setting permissions on the server.

If can't get anywhere by tommorrow, i'm switching as they are dedicated to windows servers and asp apps which seem to be a sideline for godaddy, they're pretty much a linux house.

i'll close the question and split the points.

Featured Post

ATEN's HDBaseT Presentation at InfoComm 2017

Hear ATEN Product Manager YT Liang review HDBaseT technology, highlighting ATEN’s latest solutions as they relate to real-world applications during her presentation at the HDBaseT booth at InfoComm 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Dramatic changes are revolutionizing how we build and use technology. Every company is automating, digitizing, and modernizing operations. We need a better, more connected way to work together as teams so we can harness the insights from our system…
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question