IIS 7.5 - Security

CaussyR used Ask the Experts™
Hi Everyone,

I have an IIS 7.5 web server.  It is hosting a static web site and there is a folder in the site that I only want certain people to have access. Does anyone know how, I can stop certain people access the folder ?

For example, test.com/CMS. I don't want anyone to access the CMS folder apart from certain bodies. hope this is clear.
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
this kind of configuration can be done in your web.config file, but depending on who those certain users are the approach you would take is different (you can restrict by IP, using domain users, networks, specific users, block all access to the folder except for web server account and get its contents via a script (e.g. logging into the cms and using the cms authentication)

so, take a look into web.config settings and /  or post more details here of how you want it locked.
Distinguished Expert 2017
First you would need to remove the iusr_servername from the security tab of that folder, and adding users you want to access it.

The user accessing that folder will be prompted for credentials.

Is this site your own design or you've added components off the shelf or .........

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial