Windows Server 2k3 Port Security Question

W

wizzard

Well-Known Member
Joined
Jul 3, 2007
Messages
355
Reaction score
0
Location
Durban
So I have a Windows 2k3 server which we use for a database. We recently have been given a front end for the database which is web based and we would like to try that out, but the front end has been designed with a custom web server, so we can't apply any of the standard security measures.

We need to be able to restrict which users get onto the system, because obviously we don't want everyone having access. We have LDAP running so something that could tie into that would be great. An IP based filtering solution could work but its not ideal as we would essentially like the right people to get access from anywhere.

Anyone have any suggestions?
 
If you were using IIS, you could do all sorts of security things, but since this seems to be a custom/intergrated type webserver, I'm not sure you could change settings there.

About the only thing I can think of is then to assign NTFS rights onto the index.html file, the whole directory or whatever, so that the people who need access have rights, and everyone else is denied. That still doesn't solve the whole problem though, as you need some way for the browser to send authentication details across. Something like a security box asking for username and password.

This stuff gets so complicated, and I haven't mastered much of it yet. But hope this at least sets you on the right track. Good luck
 
Check under the TCP/IP properties for the NIC - you can set TCPIP filtering options by tcp, udp or ip.

What the front end written in - how do clients access it - via a web interface?
 
I thought about permissions on the files being served up, but the program is actually a front end for a database, so it generates the files on the fly.

I was hoping to avoid IP filtering but I suppose its the route I will have to go.

WRT the front end, its a .NET program, looks like VB but I may be wrong with that. Usually they access the database with a program installed on their personal computers, but they were offering this web interface as another option for us to look at.
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X