FrontPage 2000 Server Extensions and earlierMicrosoft FrontPage provides administrative tools that let you set permissions and limit access to web sites that you create and edit on a Web server. FrontPage security is based on the security mechanism used by the Web server and its operating system.
FrontPage 2000 Server Extensions and earlier
Setting permissions
You can specify who can access web sites in FrontPage by adding the users (and user groups) to the site's user list and specifying the type of access the user has. Users can have one of the following types of permission:
Browse The user can browse the files in the web site.
Author The user can browse and change the files in a web site.
Administer The user can browse and change the files in the web site, and can also administer the web site by adding and removing users.
These permissions are set on the root web site, and all subwebs below it automatically inherit these permissions. If you want to control the access to a subweb differently, you can set unique permissions. You can control and divide web content among different sets of administrators, authors and site visitors.
Security in Web servers that run on Microsoft Windows
If the Web server is Microsoft Internet Information Services (IIS) running on Microsoft Windows, users and groups are set up and maintained in Windows, and cannot be created in FrontPage. You select the users and groups for your web sites from these Windows accounts. Access to web sites is then determined by the user's logon account (user name and password).
Note Because FrontPage security is based on Access Control Lists (ACLs), in order to enforce security, your web sites must be hosted on an NTFS partition rather than a FAT partition.
Security in Web servers that run on Unix
Most Unix Web servers maintain an access list of users who have permission to use the Web server, which is separate from the list of users and groups who can log on to the computer. To specify who can access a web site in FrontPage, you add users and then specify their passwords and permission levels.
For more information, see the Office 2000 Resource Kit.
FrontPage Server Extensions 2002 or SharePoint Team Services
About accounts
User accounts let you control who can access the web site. You can create accounts that allow access to the web site only, or you can use existing network server or domain accounts. In most cases, you'll want to assign a username and password to each person who works with your web site.
About user roles
User roles are assigned to accounts, and determine the types of access that users are allowed when using the web site. For example, if you have a group of users who will view site content and make changes, you can assign them to the Author role. This role is created by default. As a site administrator, you can modify the access rights for the default roles or create new roles.
You can assign a user to more than one role. However, if you're using the default user roles, you need only select one role for the user account. Each default role has all of the rights of those lower on the list plus additional rights. For example, a contributor has browser rights in addition to the right to contribute to web document discussions.
Default user roles
The following roles are available by default for web sites hosted by servers running SharePoint Team Services or FrontPage Server Extensions 2002. Each role gives the user rights to perform specific actions on a web site or virtual server.
Browser View the pages in the web site. This role contains the following rights: FrontPage Browse, View Web Document Discussions, and View Lists.
Contributor Participate in document discussions and subscribe to documents or folders. This role contains all Browser rights plus the following rights: Author Lists, Author Web Document Discussions, Close Web Document Discussions, and Subscribe To Document.
Author Add pages to the web site and edit tasks and lists. This role contains all Contributor rights plus the following rights: Author Pages, Edit Tasks, and Author Lists.
Advanced Author Edit a web site in Microsoft FrontPage. This role contains all Author rights plus the following rights: Border Web, Theme Web, Design Lists, Link Style Sheets, Manage Tasks, and Recalc Web.
Administrator Manage a web site or virtual server. This role contains all rights.
Access rights list
The following rights are available in web sites. Each right gives the user permission to perform a specific action on a web site or virtual server.
Author Pages Create, edit, or delete HTML pages and directories.
FrontPage Browse Use Microsoft FrontPage browse time functionality, such as a bot expansion.
Register Components Upload new components (runtime code) and have them run by the server.
Set Source Control Set the source control options.
Theme Web Apply a theme to a web site.
Border Web Apply a border to a web site.
Link Style Sheets Apply a style sheet to an entire web site.
Manage Lists Add, edit, or remove lists.
Design Lists Create or design new or existing lists.
Author Lists Add new content to an existing list.
View Lists Read lists.
Close Web Document Discussions Mark document discussion items as "closed."
Author Web Document Discussions Participate in document discussions.
View Web Document Discussions Read document discussion items.
Subscribe To Document Use the subscription service.
Configure Access Create, delete, and modify roles, including adding users to the roles and specifying which rights are assigned to a role.
Set Permissions Specify permissions for individual files.
Create Accounts Create local machine accounts.
Manage Server Health Run the server health features for a virtual server.
Manage Usage Analysis Modify the usage analysis settings for a virtual server.
Manage Subweb Create, rename, or remove subwebs.
Recalc Web Recalculate a web site.
Manage Web Document Discussions Add, edit, remove, and close document discussion items for a virtual server.
Manage Web Subscriptions Add or remove document subscriptions for a virtual server.
About anonymous user access
If you're creating a public web site, you can allow permissions for anonymous users who don't have accounts and you can specify the user role that anonymous users will have.
About user accounts and roles for subwebs
If you have created subwebs on your web site, you can allow the subwebs to have unique accounts and user roles or you can specify that they use those of their parent web site.
About user account limits
Your server administrator can specify a limit to the number of accounts that you can create for a server or virtual server. Once you reach this limit, you must either delete unnecessary accounts or have the server administrator raise the limit. This limit does not include accounts from a network group or domain.