Multiple Security Levels on Virtual Webs on a single server

[RRinTetons]

This is mostly a "concept" question. If it's straight forward please point me to the doc's that cover this sort of stuff and I can probably go from there.

I have a Win2K Server (SP2) sitting in the Cisco PIX DMZ on our corporate network.

I want to have three web sites on it.

Site A should be accessible to both internal and external users (public) with no authentication. This site will contain ASP pages.

Site B should be accessible w/o further authentication to domain members when they hit it from their workstations within the corporate network, and with authentication when they hit it from outside. The users hitting it from the outside are not necessarily members of the company NT domain. This site will contain ASP and Perl cgi's.

Site C should always require authentication and it should be distinct from standard domain authentication. Again, some users hitting it from the outside will not be domain users. This site will contain ASP and Perl cgi's.

Direction?

 

[itguru]

Hi!

You can do it by
right click the site(C)->properties->Directory security->Anonymous access and authentication control->click edit->uncheck annonymous access
For site (B) same process for the specific folder and no need to change the deafult settings for site (A).

Hope this will help. iis_guru@yahoo.com

 

[bookouri]

I need to do exactly the same thing. Can you explain more detail about what the above accomplishes? Does this set the site up to ask use NT authentication for the secure sites? How do you handle user names and rights and stuff like that to make it secure?

Im trying to learn as much about IIS as I can, any further details would be appreciated...