These forums are read-only and considered to be an archive. Please use the new Community for future interaction and posts.

Unusual question - open area in WebExplorer

Hello--

We purchased a license and are standing up a WebEx server. We have two needs I am hoping WebEx can solve.
The first is user-based file management system which is why we are using this product.

The second is mass file distribution to a certain population of hundreds of individuals where we don't want to build/maintain individual accounts spaces. The catch is that we want to restrict this 'open' area by top level domain (.mil in our case).

Is it possible to establish a generic account, but restrict access to this account by an ASP reverse DNS lookup script? I know the scripts exist (we are currently using one), but I didn't know if it could be selectively integrated into WebExplorer.

Thanks!

Dave

David Bretzke 9/19/2003 3:25 PM

Maybe this is a solution to my own problem---

Domain restrictions are available in IIS at the directory level. I guess I could build the generic user account (which establishes a directory), and then set the domain restriction through IIS for that directory.

Does anyone see any problems with this plan? I assume, since it's an IIS function, there is no WebExplorer conflict?

Is this right?

Thanks!

Dave

David Bretzke 9/19/2003 4:19 PM

Hi Dave,
I think your second solution may work but I am not sure if this setting would apply when accessing the folder within an application like WebExplorer Server and not directly via web browser.
IIS settings are privileged so there shouldn't be any problems with WebExplorer Server though.

Anyway, you should give it a try and please let me know the results.

Cem Alacayir 9/22/2003 6:31 PM

This won't work unless you have the WEXDATA (all the user/admin/groups data directories under inetpub or whatever your default web directory is. I'm not sure that would be a sart decision anyway....I would not like to give hackers the opportunity to try and hack down into the data directories.

db

David Bretzke 10/2/2003 10:28 AM

Dave,
You can create a virtual directory (like /fileserver) targeted to a non-web directory for this purpose. If you revoke IIS "Read" and "Execute" permissions of this folder then files will not be accessible via web browser and will be pretty secured.

Cem Alacayir 10/7/2003 3:00 PM