Last post Mar 27, 2008 05:18 PM by Mikesdotnetting
Mar 27, 2008 04:16 PM|minis13|LINK
Sorry for the lack of knowledge on ASP.net, I am actually a security administrator faced with the following issue:
I restricted access to a Folder which contains an access.mdb database to the following:
and two specific users (owners)
The ASP comes into play because when the folder had (has) Everyone it works (reads from access database) correctly but, when restricted as above it does not work.
What can I possibly do (give rights to certain services) on that particular folder to make it work without granting rights to Everyone.
Thank you for your expertise.
Mar 27, 2008 05:18 PM|Mikesdotnetting|LINK
You need to apply Modify permissions on the folder to the user under which the ASP.NET app runs. On WinXP, that's ASPNET. On Win2k3, it's NETWORK SERVICE. If the app has been developed against version 2.0 of the .Net framework, the best place to put the
database is in the App_Data folder. While it falls under the root of the site, it has been configured not to serve files through IIS, so no one can browse to it and download it.