Hi,

I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
need to configure access to a remote file server in order to upload/view
files from the ASP programs.
I do not want to give <domainname>\everyone rights to the shared folder,
only the ASP script should be able to access this.

How do I go about giving the necessary permissions?
--
Gautam Heble

[ Post a follow-up to this message ]

Also the ASP application is running under Integrated Windows Authentication
--
Gautam Heble


"Gautam Heble" wrote:

> Hi,
>
> I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
> need to configure access to a remote file server in order to upload/view
> files from the ASP programs.
> I do not want to give <domainname>\everyone rights to the shared folder,
> only the ASP script should be able to access this.
>
> How do I go about giving the necessary permissions?
> --
> Gautam Heble

[ Post a follow-up to this message ]

On Fri, 5 Aug 2005 02:51:59 -0700, Gautam Heble
<GautamHeble@discussions.microsoft.com> wrote:

>I have an ASP application running on IIS 5.0 on a Windows 2000 machine. I
>need to configure access to a remote file server in order to upload/view
>files from the ASP programs.
>I do not want to give <domainname>\everyone rights to the shared folder,
>only the ASP script should be able to access this.
>
>How do I go about giving the necessary permissions?

You give permissions to the account that needs access.  That would be
the authenticated user or the anonymous user.  And since the anonymous
user isn't in the Everyone group, using Everyone wouldn't help if
that's the account accessing anyway.

Jeff

[ Post a follow-up to this message ]

Hi Jeff,

Thanks for your response, but let me describe the setup in detail.

The web application is not running under anonymous user. We are using
Integrated windows authentication with anonymous authentication disabled.
Using anonymous authentication is not an option.

I have even tried giving Domain\Everyone group read/write access to the
remote file share (which is not desirable), but even that doesnt seem to wor
k.

Since this is an ASP application, I cannot figure out a way to impersonate
all authenticated users, which as I understand is quite easy to do in ASP.Ne
t.


The server setup is:-

Web Server Box
O/S - Windows 2000 Advanced Server
Web Server - IIS 5.0 with only Integrated windows authentication enabled.

Remote File Server Box
O/S - Windows 2000 Advanced Server

Both are on the same subnet. I have synchronised username\passwords for the
users in both the servers and each server is directly accessible from the
other without needing to enter any credentials.

--
Gautam Heble


"Jeff Cochran" wrote:

> On Fri, 5 Aug 2005 02:51:59 -0700, Gautam Heble
> <GautamHeble@discussions.microsoft.com> wrote:
> 
>
> You give permissions to the account that needs access.  That would be
> the authenticated user or the anonymous user.  And since the anonymous
> user isn't in the Everyone group, using Everyone wouldn't help if
> that's the account accessing anyway.
>
> Jeff
>

[ Post a follow-up to this message ]