Checking and Setting up the Correct Permissions on the IIS Server
If you are using an Classic ASP, ASP.NET or PHP application on a Windows Server that requires that you write data or upload to a folder then you will need to check and if necessary change the permissions
on the server so that you have write as well as read permissions on the directory and files you wish to write too.
To check or change the permissions on the server go to Windows Explorer and do the following (for NT and Win 2K users only using NTFS file system, Win XP Pro users see note at bottom): -
1. Right click on the directory containing the database or text
2. Click on ''.
3. Choose the '' tab form
the dialog box window.
4. Uncheck '', from the bottom
of the dialog box.
5. Next, click on the '' button
at the top left of the window.
6. Next the '' dialog box will open, highlight '' account from the list by clicking on it. Where '' is this will be the name of your computer. '' is the Internet Guest Account setup by default
when IIS is installed on the system.
7. Next click on the '' button
in the middle left of the dialog box. You should then see 'MyComputer\IUSER_MyComputer' appear in the box in the bottom half of the dialog box. Again
where '' is will be the
name of your computer.
9. Now click on the '' button
at the bottom right of the 'Select Users
or Groups' dialog box.
10. You should now be back at the '' dialog box where the top box should now contain
11. Highlight the '' by clicking on it in the
12. Select '' and '' permissions for this account by checking the boxes at the bottom
of the window (If you are not to worried about security you
could check all the boxes to make sure that you have no problems
13. Next repeat all the steps above on the database or text file itself, to make sure the database or text file also has the correct permissions.
Windows XP Pro users please note: -
Although the instructions above are for NT4/Win2k it is almost the same in XP Pro, but you must first turn off '' from '' found in the Control Panel.
Security note: -
For extra security to prevent hackers from downloading Access databases and getting hold of sensitive data like passwords, you should place any Access databases outside of the root of your web
site in a private folder that is not accessible using a web browser.