NGWS SDK Documentation  

This is preliminary documentation and subject to change.
To comment on this topic, please send us email at ngwssdk@microsoft.com. Thanks!

Scenario 1 - Using IIS Authentication With ASP+ Impersonation

In this scenario, an administrator is setting up an application on an intranet Web site where employee information is to be posted. However, some of the information is for managers only. The manager information will be posted to a different directory (a subdirectory) than the general employee information, so that access to it can be limited. It is also assumed that:

The administrator might proceed as follows:

  1. The administrator creates the following files and directories:

    1. The administrator creates a Windows group called Managers that contains all users who should have access to the ManagerInfo.aspx file.
    2. The administrator uses the IIS administration tool (window) to set up Windows authentication.
    3. The administrator confirms that the <impersonation enabled> element in the ASP+ configuration file has not been changed from the default value of "true".
    4. The administrator sets the NTFS ACL for the ManagerInformation directory to allow access to only those identities that are in the Windows Manager group.

    The necessary security has now been applied to the EmployeeInformation application without the necessity of writing any code.