|
Home > Archive > IIS Server Security > August 2005 > Accessing remote file server from ASP scripts.
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Accessing remote file server from ASP scripts.
|
|
| Gautam Heble 2005-08-05, 7:49 am |
| Hi,
I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
need to configure access to a remote file server in order to upload/view
files from the ASP programs.
I do not want to give <domainname>\everyone rights to the shared folder,
only the ASP script should be able to access this.
How do I go about giving the necessary permissions?
--
Gautam Heble
| |
| Gautam Heble 2005-08-05, 7:49 am |
|
Also the ASP application is running under Integrated Windows Authentication
--
Gautam Heble
"Gautam Heble" wrote:
> Hi,
>
> I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
> need to configure access to a remote file server in order to upload/view
> files from the ASP programs.
> I do not want to give <domainname>\everyone rights to the shared folder,
> only the ASP script should be able to access this.
>
> How do I go about giving the necessary permissions?
> --
> Gautam Heble
| |
| Jeff Cochran 2005-08-06, 5:50 pm |
| On Fri, 5 Aug 2005 02:51:59 -0700, Gautam Heble
<GautamHeble@discussions.microsoft.com> wrote:
>I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
>need to configure access to a remote file server in order to upload/view
>files from the ASP programs.
>I do not want to give <domainname>\everyone rights to the shared folder,
>only the ASP script should be able to access this.
>
>How do I go about giving the necessary permissions?
You give permissions to the account that needs access. That would be
the authenticated user or the anonymous user. And since the anonymous
user isn't in the Everyone group, using Everyone wouldn't help if
that's the account accessing anyway.
Jeff
| |
| Gautam Heble 2005-08-07, 2:48 am |
| Hi Jeff,
Thanks for your response, but let me describe the setup in detail.
The web application is not running under anonymous user. We are using
Integrated windows authentication with anonymous authentication disabled.
Using anonymous authentication is not an option.
I have even tried giving Domain\Everyone group read/write access to the
remote file share (which is not desirable), but even that doesnt seem to work.
Since this is an ASP application, I cannot figure out a way to impersonate
all authenticated users, which as I understand is quite easy to do in ASP.Net.
The server setup is:-
Web Server Box
O/S - Windows 2000 Advanced Server
Web Server - IIS 5.0 with only Integrated windows authentication enabled.
Remote File Server Box
O/S - Windows 2000 Advanced Server
Both are on the same subnet. I have synchronised username\passwords for the
users in both the servers and each server is directly accessible from the
other without needing to enter any credentials.
--
Gautam Heble
"Jeff Cochran" wrote:
> On Fri, 5 Aug 2005 02:51:59 -0700, Gautam Heble
> <GautamHeble@discussions.microsoft.com> wrote:
>
>
> You give permissions to the account that needs access. That would be
> the authenticated user or the anonymous user. And since the anonymous
> user isn't in the Everyone group, using Everyone wouldn't help if
> that's the account accessing anyway.
>
> Jeff
>
|
|
|
|
|