Security for the Public Web Site and Extranet

<% If InStr(Request.ServerVariables("HTTP_USER-AGENT"), "MSIE") Then MachPath = "../mm/iiscpb1m.asp" Else MachPath = "iimmnscp.htm" End If %>
Goal
If you're running a public Web site or extranet, security is critical to your business. You can use IIS 4.0 to secure your site, providing the right people the appropriate access to the information you want them to have.
Components
Windows NT Server 4.0; Internet Information Server (IIS) 4.0; Active Server Pages (ASP); ADO; Microsoft SQL Server; Internet Explorer version 3.02 with Authenticode 2 update, or later versions of Internet Explorer
Environment
Internet, secured

Security for the Public Web Site Demonstration

Multimedia Demonstration

Basic Process

  1. Use Microsoft Certificate Server to issue certificates to your clients.
  2. Enable Secure Sockets Layer.
  3. Use Visual Interdev to write Active Server Pages scripts to determine the content of a client certificate, and issue or deny access on the basis of those contents.

Result

A customer with the right certificate sees confidential information.

A person lacking the appropriate certificate is so informed.

© 1997 by Microsoft Corporation. All rights reserved.