|
Home > Archive > IIS Server Security > July 2005 > IISADMPWD - IIS6
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
|
| In IIS6, MS says the IISADMPWD virtual directory needs to run in the same
virtual directory as the application that the user is trying to sign on to,
so they can change their password. I have quite a few applications that
users sign-on to and I really don't want to run them all in the same pool.
Does anyone know a way around this limitation? I am currently running IIS6
on a win2k3 SP1 server.
| |
| Joseph E Shook 2005-07-20, 2:48 am |
| Eric wrote:
> In IIS6, MS says the IISADMPWD virtual directory needs to run in the same
> virtual directory as the application that the user is trying to sign on to,
> so they can change their password. I have quite a few applications that
> users sign-on to and I really don't want to run them all in the same pool.
> Does anyone know a way around this limitation? I am currently running IIS6
> on a win2k3 SP1 server.
>
>
Ya that is the way it is. I suppose if your apps running in other app
pools where all .Net apps you could write a httpModule and register it
in machine.config and have it check. I am not sure yet of all the
challenges to do this. I have wanted to do this but have put it off for
the last two years now.
Heck for that matter we should rewrite the asp code in IISADMPWD and
make it .Net code.
|
|
|
|
|