I'd take advantage of NTFS permissions to do this. Create a group of
allowed users and lock down your web pages using this object.
-----Original Message-----
From: Joshua Nichols [mailto:jnichols (at) stimson (dot) org [email concealed]]
Sent: Monday, September 08, 2003 9:37 AM
To: focus-ms (at) securityfocus (dot) com [email concealed]
Subject: Limiting users on secific machines that are part of a domain
We have IIS 5 running on a server that is a member of a domain. We now
are required to limit access to the websites running on this machine
further than by domain.
That is, we have certain users in this domain that must be denied access
when attempting to authenticate to the webserver which previously
allowed all members of the domain to log in.
Is there any way to limit a user's access to this webserver without
disturbing their domain-level access rights?
---
KaVaDo provides the first and only integrated Web application scanner
and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on
Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
allowed users and lock down your web pages using this object.
-----Original Message-----
From: Joshua Nichols [mailto:jnichols (at) stimson (dot) org [email concealed]]
Sent: Monday, September 08, 2003 9:37 AM
To: focus-ms (at) securityfocus (dot) com [email concealed]
Subject: Limiting users on secific machines that are part of a domain
We have IIS 5 running on a server that is a member of a domain. We now
are required to limit access to the websites running on this machine
further than by domain.
That is, we have certain users in this domain that must be denied access
when attempting to authenticate to the webserver which previously
allowed all members of the domain to log in.
Is there any way to limit a user's access to this webserver without
disturbing their domain-level access rights?
Thanks,
--joshua.
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner
and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on
Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
KaVaDo provides the first and only integrated Web application scanner and
firewall security suite that prevent Web applications attacks, the most
common form of online exploitation. Download a FREE whitepaper on Security Policy Automation for Web Applications.
http://www.securityfocus.com/sponsor/KaVaDo_focus-ms_030818
------------------------------------------------------------------------
---
[ reply ]