If I have web folder that is 'browse-able', what is the 'best' method to
force people to be 'approved' by a web-based/asp.net login prior to viewing
the contents of that folder?
thanks...

There is a folder under WWWroot folder called "Intranet". This folder has
been assigned permissions for some of the web developers to change/modify
files. Unfortunately, users are not able to modify anything under this
folder. I tried replacing the permissions once, and it messed ...

I am working on an application where a web service (on the web tier)
calls another web/gateway service (on the app tier). This then needs
to save a file to a UNC share on a file server in our internal
network.

I am running Windows Server 2003 w/Service pack 2 running IIS 6.0 and FIPS
Compatibility setting set to enabled.
I am encountered a HttpParser error.  
Event Type:    Warning

When authenticating using Basic against AD, is there any way (without
coding) i can restrict the users to a certain group within AD for the
authentication?
Thanks

Can I give a user full access to the IIS Admin screen from another computer
within the same active directory domain?

if i set my login at anonymous logon (IIS), i can create folder under
virtual directory by asp script.
if i do not use my login as anonymous logon and use integrated windows
security, my login is rejected to create folder under virtual directory.

I currently have a server setup that can be accessed externally.  However it
is setup using Basic Authentication (which I don't want to use) and only
requires the user name and password entered but does not require
domain\username.

Hello:
My IT department pushed the folllowing updates to the server.
Windows Internet Explorer 7 Dynamic Installer Cumulative Security Update for
Internet Explorer 7 Dynamic Installer for Windows Server 2003 (KB953838)  

since a few days I have noticed that the server hosting's load it is
very high.
Then I have found the process which was taking the whole cpu space:
inetinfo.exe

We've a web site that has a certificate in use & all pages are using SSL.
Some pages are configured to use Basic Authentication; we're connecting to
these with mobile devices.
How secure is the process? Should I look for better methods?

This one is probably simple but I don't know where the option is.
We have a server (2003 SBS).
This server has Trend WFB console installed and running through IIS.
None of the clients will talk to the server and the logfiles indicate all

I would like to block every IP from some particular web content except from
the PC the server resides on.  Unfortunately can't get a mask that works,
for example
If I add a deny rule for the content

Hi, exist some form to encrypt all the urls with iis. ?
Im using asp.net, coldfusion  in my site.

I have a load-balanced (MS NLB) cluster of two OWA servers that both respond
to https://owa.myfirm.com. Do I need to get a separate SSL cert for each
server, or can I just install the same SSL cert on both since they are both
NAT'd to the external IP address for owa.myfirm.com?