| Groups | Blog | Home |
iis security : Programmatically accessing individual file security configuration
trying to automate. Is there any way to do the following to an individual FILE within a virtual directory through ADSI, WMI, or some other means (ie. Win32 API's)? a. Run Start-Programs-Administrative Tools-Internet Services Manager b. Double click the server name to expand the server web sites. c. Double click the Default web site to expand it d. Double click the virtual directory folder to expand it. e. In the right pane, right click leadnote.asmx f. Click the file security tab. g. In the Anonymous access and authentication control section, click the edit button h. Check basic authentication. Make sure all other options are unchecked. i. Click the OK button. j. In the secure communications section, click the Edit button. k. Uncheck Require Secure Channel. l. Click OK. m. Click OK. n. Close Internet Services Manager. Any help (especially sample code) would be GREATLY appreaciated!
What are you asking? There is a way to do this with ADSI, WMI and even some
other means (like changing the metabase yourself). The fact that you're suggesting those seems to imply that you know how to use them, so do it. The "key" is the path to the file, in a web context, such as this: W3SVC/1/Root/vdir/leadnote.asmx Use your favorite technology to set metabase properties you need. Jerry [quoted text, click to view] "David Miller" <dmiller@crowechizek.com> wrote in message news:fb6842a.0312181440.1085c7c1@posting.google.com... > I currently have a manual process as a part of an install that I'm > trying to automate. Is there any way to do the following to an > individual FILE within a virtual directory through ADSI, WMI, or some > other means (ie. Win32 API's)? > > a. Run Start-Programs-Administrative Tools-Internet Services Manager > b. Double click the server name to expand the server web sites. > c. Double click the Default web site to expand it > d. Double click the virtual directory folder to expand it. > e. In the right pane, right click leadnote.asmx > f. Click the file security tab. > g. In the Anonymous access and authentication control section, click > the edit button > h. Check basic authentication. Make sure all other options are > unchecked. > i. Click the OK button. > j. In the secure communications section, click the Edit button. > k. Uncheck Require Secure Channel. > l. Click OK. > m. Click OK. > n. Close Internet Services Manager. > > Any help (especially sample code) would be GREATLY appreaciated! > > Dave
I should have been a bit more specific in my post. I'm
attempting to get this working using IIS 5.0 on a Win2k machine. According to the documentation, I should be able to use a IISWebFile ADSI object to get/set the properties I need (http://msdn.microsoft.com/library/default.asp? url=/library/en-us/iissdk/iis/ref_prog_iaorefiwf.asp). However, the following C# code fails: DirectoryEntry objIIS = new DirectoryEntry ("IIS://localhost/W3SVC/1/ROOT/autobase/leadnote.asmx"); String user = (string) objIIS.Properties ["AnonymousUserName"].Value; Here, autobase is a virtual directory and leadnote.asmx is the file I'm interested in. This code will fail on an exception that the path cannot be found. If I remove the file and reference only the virtual directory, the code works fine. I am certain that the file exists. Any ideas on why this is not working? Dave [quoted text, click to view] >-----Original Message-----
>What are you asking? There is a way to do this with ADSI, WMI and even some >other means (like changing the metabase yourself). The fact that you're >suggesting those seems to imply that you know how to use them, so do it. The >"key" is the path to the file, in a web context, such as this: > >W3SVC/1/Root/vdir/leadnote.asmx > >Use your favorite technology to set metabase properties you need. > >Jerry > >"David Miller" <dmiller@crowechizek.com> wrote in message >news:fb6842a.0312181440.1085c7c1@posting.google.com... >> I currently have a manual process as a part of an install that I'm >> trying to automate. Is there any way to do the following to an >> individual FILE within a virtual directory through ADSI, WMI, or some >> other means (ie. Win32 API's)? >> >> a. Run Start-Programs-Administrative Tools-Internet Services Manager >> b. Double click the server name to expand the server web sites. >> c. Double click the Default web site to expand it >> d. Double click the virtual directory folder to expand it. >> e. In the right pane, right click leadnote.asmx >> f. Click the file security tab. >> g. In the Anonymous access and authentication control section, click >> the edit button >> h. Check basic authentication. Make sure all other options are >> unchecked. >> i. Click the OK button. >> j. In the secure communications section, click the Edit button. >> k. Uncheck Require Secure Channel. >> l. Click OK. >> m. Click OK. >> n. Close Internet Services Manager. >> >> Any help (especially sample code) would be GREATLY appreaciated! >> >> Dave > > >.
Since it may be useful to more people I'll post the answer here too:
You need to create the file key if it does not exist. IIS does not automatically create metabase keys for everything that's in your web directory. So if it doesn't exist you need to create it. Jerry [quoted text, click to view] "David Miller" <dmiller@crowechizek.com> wrote in message news:0b7801c3c655$f8ec9580$a501280a@phx.gbl... > I should have been a bit more specific in my post. I'm > attempting to get this working using IIS 5.0 on a Win2k > machine. According to the documentation, I should be > able to use a IISWebFile ADSI object to get/set the > properties I need > (http://msdn.microsoft.com/library/default.asp? > url=/library/en-us/iissdk/iis/ref_prog_iaorefiwf.asp). > However, the following C# code fails: > > DirectoryEntry objIIS = new DirectoryEntry > ("IIS://localhost/W3SVC/1/ROOT/autobase/leadnote.asmx"); > String user = (string) objIIS.Properties > ["AnonymousUserName"].Value; > > Here, autobase is a virtual directory and leadnote.asmx > is the file I'm interested in. This code will fail on an > exception that the path cannot be found. If I remove the > file and reference only the virtual directory, the code > works fine. I am certain that the file exists. > > Any ideas on why this is not working? > > Dave > > >-----Original Message----- > >What are you asking? There is a way to do this with > ADSI, WMI and even some > >other means (like changing the metabase yourself). The > fact that you're > >suggesting those seems to imply that you know how to use > them, so do it. The > >"key" is the path to the file, in a web context, such as > this: > > > >W3SVC/1/Root/vdir/leadnote.asmx > > > >Use your favorite technology to set metabase properties > you need. > > > >Jerry > > > >"David Miller" <dmiller@crowechizek.com> wrote in message > >news:fb6842a.0312181440.1085c7c1@posting.google.com... > >> I currently have a manual process as a part of an > install that I'm > >> trying to automate. Is there any way to do the > following to an > >> individual FILE within a virtual directory through > ADSI, WMI, or some > >> other means (ie. Win32 API's)? > >> > >> a. Run Start-Programs-Administrative Tools-Internet > Services Manager > >> b. Double click the server name to expand the server > web sites. > >> c. Double click the Default web site to expand it > >> d. Double click the virtual directory folder to expand > it. > >> e. In the right pane, right click leadnote.asmx > >> f. Click the file security tab. > >> g. In the Anonymous access and authentication control > section, click > >> the edit button > >> h. Check basic authentication. Make sure all other > options are > >> unchecked. > >> i. Click the OK button. > >> j. In the secure communications section, click the > Edit button. > >> k. Uncheck Require Secure Channel. > >> l. Click OK. > >> m. Click OK. > >> n. Close Internet Services Manager. > >> > >> Any help (especially sample code) would be GREATLY > appreaciated! > >> > >> Dave > > > > > >. > >
IIS does not create metabase nodes for you on access. If the node doesn't
exist, you need to create it first before setting/using any of its properties. Also, you need to individually create intervening nodes instead of all at once. i.e. you want to set values on "localhost/w3svc/1/root/vdir1/folder1/folder2/file.ext", and you have an existing node at "localhost/w3svc/1/root/vdir1". You need to create folder1, folder2, and file.ext nodes individually instead of creating "/folder1/folder2/file.ext" at once in a creation call. IIS5 doesn't force this, but IIS6 will. Why? Well, suppose you create "/folder1/folder2/file.ext" as a IIsWebFile, and folder1 and folder2 are autocreated -- can you tell me what the KeyType for /folder1 and /folder2 are supposed to be?? WebFile ADSI objects do not exist by default, so you'll need to first create it using the path that you've been using in the code. Then, you can attempt to access its inherited properties plus set overriding properties (for example, AnonymousUserName property is likely INHERITED from the parent. As soon as you set it, it forever overrides any parent properties for the node until you delete it to re-engage value inheritance). AuthFlags = 2 makes sure only Basic is checked. AccessSSLFlags & 0xFFFFFFF7 will turn off "Require SSL". -- //David IIS This posting is provided "AS IS" with no warranties, and confers no rights. // [quoted text, click to view] "David Miller" <dmiller@crowechizek.com> wrote in message I should have been a bit more specific in my post. I'mnews:0b7801c3c655$f8ec9580$a501280a@phx.gbl... attempting to get this working using IIS 5.0 on a Win2k machine. According to the documentation, I should be able to use a IISWebFile ADSI object to get/set the properties I need (http://msdn.microsoft.com/library/default.asp? url=/library/en-us/iissdk/iis/ref_prog_iaorefiwf.asp). However, the following C# code fails: DirectoryEntry objIIS = new DirectoryEntry ("IIS://localhost/W3SVC/1/ROOT/autobase/leadnote.asmx"); String user = (string) objIIS.Properties ["AnonymousUserName"].Value; Here, autobase is a virtual directory and leadnote.asmx is the file I'm interested in. This code will fail on an exception that the path cannot be found. If I remove the file and reference only the virtual directory, the code works fine. I am certain that the file exists. Any ideas on why this is not working? Dave [quoted text, click to view] >-----Original Message----- >What are you asking? There is a way to do this with ADSI, WMI and even some >other means (like changing the metabase yourself). The fact that you're >suggesting those seems to imply that you know how to use them, so do it. The >"key" is the path to the file, in a web context, such as this: > >W3SVC/1/Root/vdir/leadnote.asmx > >Use your favorite technology to set metabase properties you need. > >Jerry > >"David Miller" <dmiller@crowechizek.com> wrote in message >news:fb6842a.0312181440.1085c7c1@posting.google.com... >> I currently have a manual process as a part of an install that I'm >> trying to automate. Is there any way to do the following to an >> individual FILE within a virtual directory through ADSI, WMI, or some >> other means (ie. Win32 API's)? >> >> a. Run Start-Programs-Administrative Tools-Internet Services Manager >> b. Double click the server name to expand the server web sites. >> c. Double click the Default web site to expand it >> d. Double click the virtual directory folder to expand it. >> e. In the right pane, right click leadnote.asmx >> f. Click the file security tab. >> g. In the Anonymous access and authentication control section, click >> the edit button >> h. Check basic authentication. Make sure all other options are >> unchecked. >> i. Click the OK button. >> j. In the secure communications section, click the Edit button. >> k. Uncheck Require Secure Channel. >> l. Click OK. >> m. Click OK. >> n. Close Internet Services Manager. >> >> Any help (especially sample code) would be GREATLY appreaciated! >> >> Dave > > >. >
Don't see what you're looking for? Try a search.
|
June 2003
July 2003
August 2003
September 2003
October 2003
November 2003
December 2003
January 2004
February 2004
March 2004
April 2004
May 2004
June 2004
July 2004
August 2004
September 2004
October 2004
November 2004
December 2004
January 2005
February 2005
March 2005
April 2005
May 2005
June 2005
July 2005
August 2005
September 2005
October 2005
November 2005
December 2005
January 2006
February 2006
March 2006
April 2006
May 2006
June 2006
July 2006
August 2006
September 2006
October 2006
November 2006
December 2006
January 2007
February 2007
March 2007
April 2007
May 2007
June 2007
July 2007
August 2007
September 2007
October 2007
November 2007
December 2007
January 2008
February 2008
March 2008
April 2008
May 2008
June 2008
| home · blog · groups | Questions? Comments? Contact the dn |