Navigating Through Access Controls: Insightful Strategies & Tips

Table of Contents

• Introduction
• Registration
• Using Advanced Installer
  • GUI
  • Working with Projects
  • Installer Project
    * Product Information
    * Resources
    * Package Definition
    * Requirements
    * User Interface
    * System Changes
    * Server
    * Internet Information Services Page”)
    * IIS Server
    * Global Settings
    * Website Settings
    * Physical Path Credentials Dialog
    * Web Site Bindings/SSL Settings
    * Virtual Directory Settings
    * ASP.NET Settings
    * Access Flags
    * Authentication
    * Default Document
    * Website Performance
    * FTP Access
    * FastCGI Settings
    * ISAPI Filters
    * MIME Types
    * Application Mapping
    * HTTP Response Headers
    * Machine Key
    * HTTP Error Handling
    * .NET Error Handling
    * Custom Properties
    * Application Pools
    * Web Deploy Packages
    * Legacy Options
    * IIS Browse
    * ODBC
    * SQL Databases
    * SharePoint Page
    * Silverlight Page
    * Custom Behavior
  • Patch Project
  • Merge Module Project
  • Updates Configuration Project
  • Windows Store App Project
  • Modification Package Project
  • Optional Package Project
  • Windows Mobile CAB Projects
  • Visual Studio Extension Project
  • Software Installer Wizards - Advanced Installer
  • Visual Studio integration
  • Alternative to AdminStudio/Wise
  • Replace Wise
  • Migrating from Visual Studio Installer
  • Keyboard Shortcuts
  • Shell Integration
  • Command Line
  • Advanced Installer PowerShell Automation Interfaces
• Features and Functionality
• Tutorials
• Samples
• How-tos
• FAQs
• Windows Installer
• Deployment Technologies
• IT Pro
• MSIX
• Video Tutorials
• Advanced Installer Blog
• Table of Contents

Disclaimer: This post includes affiliate links

If you click on a link and make a purchase, I may receive a commission at no extra cost to you.

Access Flags

This dialog allows you to properly configure access permission flags for a Web Site or a Virtual Directory on the target IIS Server.

Local Access

Read

Setting this option indicates that the file or the folder contents may be read through a web browser.

Script

Setting this option indicates that the file or folder contents may be executed if they are script files or static content. Unchecking this option only allows static files, such as HTML files, to be served.

Execute

Setting this option indicates that the file or folder contents may be executed, regardless of file type.

Write

Setting this option indicates that users are allowed to upload files and their associated properties to the enabled directory on your server or to change content in a Write-enabled file. Write can be implemented only with a browser that supports the PUT feature of the HTTP 1.1 protocol standard.

Setting both “Write” and “Execute” permissions can be dangerous, because it allows users to modify internal files and run potentially damaging scripts on the system.

Source

Setting this option indicates that users are allowed to access source code (scripts), if either “Read” or “Write” permissions are set.

The AccessSource flag, if set, grants source access to clients, using the HTTP extensions described by the Web Distributed Authoring and Versioning (WebDAV) standard. For more information onWebDAV, see the World Wide Web Consortium web site and the WebDAV Publishing documentation.

No Physical Directory

Setting this option indicates that access to the physical path is not allowed.

This flag is available only for IIS versions 6.0 and above.

Remote Access

No Read

Setting this option indicates that remote requests to view files are denied; only requests from the same computer as the IIS server succeed if the local “Read” property is set.

No Script

Setting this option indicates that remote requests to view dynamic content are denied; only requests from the same computer as the IIS server succeed if the local “Script” property is set.

No Write

Setting this option indicates that remote requests to create or change files are denied; only requests from the same computer as the IIS server succeed if the local “Write” property is set.

No Execute

Setting this option indicates that remote requests to execute applications are denied; only requests from the same computer as the IIS server succeed if the local “Execute” property is set.

You can enable local access without remote access, but you cannot enable remote access without local access.

Remote access flags are operative only when the corresponding local access flag is set. For example, setting remote “No Read” has no effect unless local “Read” is set as well. If both are set, the local host can read the file, but the file cannot be read by the remote client.

User Access

Configure the options to control user interaction with the web site / virtual directory.

Enable directory browsing

Enable this option if you want to allow users to browse the directory structure in the absence of a default document.

Did you find this page useful?

Please give it a rating:

Thanks!

Report a problem on this page

Information is incorrect or missing

Information is unclear or confusing

Something else

Can you tell us what’s wrong?

Send message

Also read: