How to Restrict Browse Access to a Folder

This article describes how to restrict anonymous browse access to a folder when the FrontPage Server Extensions are installed, without making the folder a subweb.

Since FrontPage controls permissions on a Web-by-Web basis, it is not obvious how to control access to one folder without making it a subweb. For example, this article will deal with the following directory structure:

c:\ 
   |-InetPub
         |
         |-WWWRoot
              |
              |-Folder1
				

WWWRoot contains the root Web. Anonymous users must not be able to browse the information in Folder1. To make sure that anonymous users cannot browse the information in Folder1, follow these steps:

1.	Open the Web in FrontPage and from the Tools menu select Security and click Permissions. NOTE: To use the FrontPage 98 client path select Tools and then click Permissions.
2.	On the Users tab, add the accounts you want to have access to the contents in Folder1. Make sure that you have given only browse access. You can also use Windows NT Groups to allow access.
3.	Make sure that the Everyone button has Browse access and click OK. At the server level, complete the following steps: 1. From the Start button select Programs. Select the Windows NT 4.0 Option Pack. Select the Microsoft Internet Information Server and click Internet Service Manager. This will start the Microsoft Management Console (MMC). 2. Select the Folder1 listing in MMC and right-click on Folder1. 3. Click Properties. 4. From the Directory Security tab, select Edit for Anonymous Access and Authentication Control. 5. Unselect the Allow Anonymous Access checkbox. 6. Click OK.

Users will still be able to browse the Web anonymously until they try to access the information in Folder1. At this point, the user will be prompted for a username and password. Since you have added the users with browse access, their credentials will be valid.