Granting and Denying Access to Computers

You can configure your Web server to grant or deny specific computers, groups of computers, or domains access to Web sites, directories, or files. For example, you can prevent outside network users from accessing your Web server by granting access only to members of your intranet, and explicitly denying access to outside users.

Important   

• When you set security properties for a specific Web site, you automatically set the same security properties for directories and files belonging to that site, unless the security properties of the individual directories and files have been previously set.
• Your Web server will prompt you for permission to reset the properties of individual directories and files when you attempt to set security properties for your Web site. If you choose to reset these properties, your previous security settings will be replaced by the new settings. The same condition applies when you set security properties for a directory containing subdirectories or files with previously set security properties. For more information about setting properties, see the Properties and Inheritance of Properties on Sites section in About Web Sites.

1. In Internet Service Manager, select a Web site, directory, or file, and open its property sheets.
2. Select the appropriate Directory Security or File Security property sheet. Under TCP/IP and Domain Name Restrictions, click Edit.
3. In the IP Address and Domain Name Restrictions dialog box, select the Denied Access option. When you select this option, you deny access to all computers and domains, except those that you specifically grant access to on this property sheet.
4. Click Add.
5. In the Grant Access On dialog box, select Single Computer, Group of Computers, or Domain Name options. For more information about these options, click Help.
6. Click the DNS Lookup button to search for computers or domains by name, rather than by IP address. Type in a name, then click OK.
7. Click OK, again.

1. In Internet Service Manager, select a Web site, directory, or file, and open its property sheets.
2. Select the appropriate Directory Security or File Security property sheet. Under TCP/IP and Domain Name Restrictions, click Edit.
3. In the IP Address and Domain Name Restrictions dialog box, select the Granted Access option. When you select this option, you grant access to all computers and domains, except those that you specifically deny access to on this property sheet.
4. Click Add.
5. In the Deny Access On dialog box, select Single Computer, Group of Computers, or Domain Name options. For more information about these options, click the Help button.
6. Click the DNS Lookup button to search for computers or domains by name, rather than by IP address. Type in a name, then click OK.
7. Click OK, again.

Note   In the case of a remote user accessing your Web server through a proxy server, the user will appear to have the IP address of the proxy server.

© 1997 by Microsoft Corporation. All rights reserved.