file security and access controls

Hello

I am looking to set up a way for a predefined group of users can
authenticate when downloading a file from an unsecure web site. The
page itself doesn't require SSL or passwords but when the user goes to
click on a file to download it a challenge will appear. I am not set
on how it happens just that it does. There are no regalatory
restrictions, just proirity information and intellectually property.

I use W2k3 and IIS 6

Thanks

Re: file security and access controls

"wuzzle" wrote in message
news:1194368887.270711.249920@t8g2000prg.googlegroups.com...
> Hello
>
> I am looking to set up a way for a predefined group of users can
> authenticate when downloading a file from an unsecure web site. The
> page itself doesn't require SSL or passwords but when the user goes to
> click on a file to download it a challenge will appear. I am not set
> on how it happens just that it does. There are no regalatory
> restrictions, just proirity information and intellectually property.
>
> I use W2k3 and IIS 6

Turn off anonymous access for the file (or perhaps its folder) and turn on
windows intergrated access. Create a user group in the domain and, apart
from whatever admin level access you need, grant only that group read
access.

Now users attempting to download will either automatically get access using
their existing credentials or be presented with a network logon dialog.

--
Anthony Jones - MVP ASP/ASP.NET

Re: file security and access controls

Hi,

How do you want to implement this? Using Windows Authentication and
setting up NTFS security on the file(s)? Custom made login mechanism?

The easiest is probably do disable anonymous access on the file(s), create
a group in Active Directory (or on the server if you do not use AD), and
assign that group appropriate access to the file(s).

--
Regards,
Kristofer Gafvert
http://www.gafvert.info/iis/ - IIS Related Info


wuzzle wrote:

>Hello
>
> I am looking to set up a way for a predefined group of users can
>authenticate when downloading a file from an unsecure web site. The
>page itself doesn't require SSL or passwords but when the user goes to
>click on a file to download it a challenge will appear. I am not set
>on how it happens just that it does. There are no regalatory
>restrictions, just proirity information and intellectually property.
>
>I use W2k3 and IIS 6
>
>Thanks

Re: file security and access controls

On Nov 6, 9:50 am, "Kristofer Gafvert"
wrote:
> Hi,
>
> How do you want to implement this? Using Windows Authentication and
> setting up NTFS security on the file(s)? Custom made login mechanism?
>
> The easiest is probably do disable anonymous access on the file(s), create
> a group in Active Directory (or on the server if you do not use AD), and
> assign that group appropriate access to the file(s).
>
> --
> Regards,
> Kristofer Gafverthttp://www.gafvert.info/iis/- IIS Related Info
>
>
>
> wuzzle wrote:
> >Hello
>
> > I am looking to set up a way for a predefined group of users can
> >authenticate when downloading a file from an unsecure web site. The
> >page itself doesn't require SSL or passwords but when the user goes to
> >click on a file to download it a challenge will appear. I am not set
> >on how it happens just that it does. There are no regalatory
> >restrictions, just proirity information and intellectually property.
>
> >I use W2k3 and IIS 6
>
> >Thanks- Hide quoted text -
>
> - Show quoted text -

Thanks for the responses. I was just looking for different ways. I
was assuming I could use NTFS permission on the folder containing the
files.