Restricting Access Using File Permissions

You can use file-level security in conjunction with folder-level security to add another barrier to access. In this case, you simply change the permissions on each Admin file to either read-only access or no access depending upon your security needs.

Alternatively, you can use file-level permissions to enforce a more granular and selective level of security. You do this by restricting links to selected ASP files (administration pages).

To restrict access using file permissions

  1. Open Windows NT Explorer and open the \Inetpub\Wwwroot\FmLib\Admin folder.
  2. In the Admin folder, right-click the ASP files for which you want to restrict access, and then click Properties.
  3. Click the Security tab.
  4. Click Permissions. This displays the Directory Permissions dialog box with a list of users and groups who can access this file.
  5. Apply file-level access permissions to these files. Click OK.

The following table lists the primary ASP files used for administration of the CML sample application.

Administrative function File or folder
View catalog of library items Catalog.asp
Check in library items Checkin.asp
View and modify application settings AppSettings.asp
Check out library items Checkout.asp
Menu of administration options Logon.asp
View the queue of checkout requests ViewRequests.asp
Add materials to the library Admin/Adnmat folder