The virtual directories on the front-end servers connect to external users. However, to control access to content, you must use the virtual directories on the back-end servers to set permissions. Exchange 2000 is designed so that only the back-end server propagates permissions for its virtual directories.
NOTE: The procedure that you use to set virtual directory permissions is different from the procedure that you use to set logon rights. Logon rights include Log on locally, which Microsoft Outlook Web Access clients might have to access the virtual directories. You must set these rights on the front-end computer by using the Local Security Settings console.
For more information about how to set permissions on virtual directories in Internet Services Manager, see "Setting NTFS Permissions for a Directory or File" in the Microsoft Internet Information Services (IIS) 5.0 online documentation.
For more information about Exchange 2000 front-end and back-end architecture, see the front-end and back-end architecture topics in the Exchange 2000 online documentation.
For additional information about how to configure the virtual directory, click the article numbers below
to view the articles in the Microsoft Knowledge Base:
195681�
HOW TO: Configure an Exchange Mailbox for Anonymous Access
267259�
XADM: Virtual Directory Metabase Permissions Only Apply When Changed on Back-end Servers