+ Post New Thread
Results 1 to 8 of 8
Windows Thread, Restricting access to intranet page in Technical; Hi guys Pretty simple one I think, I have created a staff intranet page which I intend on making their ...
  1. #1
    JPS
    JPS is offline
    JPS's Avatar
    Join Date
    May 2010
    Location
    Chelmsford
    Posts
    293
    Thank Post
    91
    Thanked 44 Times in 40 Posts
    Rep Power
    11

    Restricting access to intranet page

    Hi guys

    Pretty simple one I think, I have created a staff intranet page which I intend on making their homepage. I am fine with all that part. What I want to do is ensure that students cannot access that site.

    I figure that I could just add it as a blacklisted URL in the filter for students, but wondered if there was another way, somewhere in windows, perhaps Group Policy or some security setting in IIS.

    Apologies for sounding pretty clueless. Any suggestions would be appreciated.

    Thanks

  2. #2

    glennda's Avatar
    Join Date
    Jun 2009
    Location
    Sussex
    Posts
    7,714
    Thank Post
    269
    Thanked 1,116 Times in 1,012 Posts
    Rep Power
    345
    I have it setup that they can't bypass proxy for local addresses. and then for students don't have an exception for http://staffintraneturl which then the proxy tries to forward to our lea which gives an error.

    simple but effective

  3. Thanks to glennda from:

    JPS (18th January 2011)

  4. #3
    limbo's Avatar
    Join Date
    Aug 2005
    Location
    Birmingham
    Posts
    460
    Thank Post
    2
    Thanked 41 Times in 36 Posts
    Rep Power
    24
    This is possible in IIS, you can assign permissions to a particular folder in IIS as you would a shared folder on the server. You can then either ask for the user to enter a username and password or use the windows login information (neatest).

    How you do it depends on the version of IIS you are using.

    EDIT: This is a guide for IIS5.0 and IIS6.0 - step 8 is where you can choose the different authentication types, Integrated Windows Authenticated is the most seemless and secure on an intranet. http://www.hosting.com/support/dedic...asswordprotect
    Last edited by limbo; 18th January 2011 at 02:23 PM. Reason: add more info

  5. Thanks to limbo from:

    JPS (18th January 2011)

  6. #4
    JPS
    JPS is offline
    JPS's Avatar
    Join Date
    May 2010
    Location
    Chelmsford
    Posts
    293
    Thank Post
    91
    Thanked 44 Times in 40 Posts
    Rep Power
    11
    Thats great @limbo. Bit annoyed with myself for not working that out, as it wasn't beyond my abilities. Anyway, I now have a lovely (in my opinion) staff intranet page accessible by staff but not students. Now I just have to explain to my prehistoric head that its a good idea!

    One happy edugeeker!

  7. #5

    Join Date
    Nov 2010
    Location
    California
    Posts
    137
    Thank Post
    0
    Thanked 24 Times in 22 Posts
    Rep Power
    11
    JPS - did you end up setting permissions in IIS?

    I love IIS to be honest. I have our ITS support page to allow all traffic but then I have a knowledge base /kb that uses digest authentication. Works great! I then set the permissions to only allow our ITS Staff to access the KB.

  8. #6
    limbo's Avatar
    Join Date
    Aug 2005
    Location
    Birmingham
    Posts
    460
    Thank Post
    2
    Thanked 41 Times in 36 Posts
    Rep Power
    24
    Our whole website / learning platform / MLE works like this - lets us have single sign on for everything synch'ed in with the domain so a password change / new user is no drama at all.

  9. #7
    JPS
    JPS is offline
    JPS's Avatar
    Join Date
    May 2010
    Location
    Chelmsford
    Posts
    293
    Thank Post
    91
    Thanked 44 Times in 40 Posts
    Rep Power
    11
    Quote Originally Posted by qcomer View Post
    JPS - did you end up setting permissions in IIS?
    Yeh I just disabled annonymous access and used windows authentication. Then set student users as deny access on the permissions of the folder on my server where the intranet files reside.

  10. #8
    chrisbrown's Avatar
    Join Date
    Aug 2010
    Location
    Melbourne, Australia
    Posts
    103
    Thank Post
    2
    Thanked 16 Times in 14 Posts
    Rep Power
    16
    Quote Originally Posted by glennda View Post
    I have it setup that they can't bypass proxy for local addresses. and then for students don't have an exception for http://staffintraneturl which then the proxy tries to forward to our lea which gives an error.

    simple but effective
    I agree that it's simple, but I don't think it's effective. What happens when a student removes their proxy configuration? What happens when a student connects a foreign device that doesn't get your GPOs applied? They can then access this website.

    The only "effective" method is to apply permissions on the site in a deny all, allow few approach.

  11. Thanks to chrisbrown from:

    mac_shinobi (20th January 2011)

SHARE:
+ Post New Thread

Similar Threads

  1. How to make an intranet front page on OSX
    By GenieNitro in forum How do you do....it?
    Replies: 1
    Last Post: 27th June 2009, 05:01 PM
  2. New intranet Page design take a look...
    By Antp in forum Web Development
    Replies: 11
    Last Post: 19th November 2008, 04:38 PM
  3. School intranet page...
    By Antp in forum Web Development
    Replies: 0
    Last Post: 9th October 2008, 01:27 PM
  4. Force Run .exe from a Intranet Page?
    By Silverman in forum Web Development
    Replies: 2
    Last Post: 2nd July 2008, 11:21 AM
  5. Problem with our intranet page and firefox
    By gh256 in forum Network and Classroom Management
    Replies: 4
    Last Post: 24th April 2008, 03:46 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •