IIS6 Permissions

Posted by Gordon Carpenter-Thompson on Server Fault See other posts from Server Fault or by Gordon Carpenter-Thompson
Published on 2011-01-06T17:25:42Z Indexed on 2011/01/06 17:55 UTC
Read the original article Hit count: 368

We have a set of IIS6 Jakarta/ASP.NET applications (implemented as virtual directories) on a machine without a domain. The directories all exist under the default website.

We need to setup the permissions so that certain users can access only specific applications yet others users can access several of the applications.

The way it's been setup previously has been to explicitly deny access to the users for every application except the ones that they are allowed to see. The problem is that the list of applications changes fairly often (for demos etc) and it's been known for the developers to forget to deny the old users access to the new applications which leads to security problems.

This is all quite unmaintainable. Does anybody have any advice on this? Surely I can't be the only person to find this all a bit of a mess?

Thanks

© Server Fault or respective owner

Related posts about windows-server-2003

Related posts about permissions