Microsoft KB Archive/323470

= How to create a secure WebDAV publishing directory =

Article ID: 323470

Article Last Modified on 12/3/2007

-

APPLIES TO


 * Microsoft Internet Information Services 5.0
 * Microsoft Internet Information Services 5.1
 * Microsoft Internet Information Services 6.0

-



This article was previously published under Q323470



IN THIS TASK
SUMMARY
 * Create a WebDAV Publishing Directory
 * Authentication
 * Troubleshooting

REFERENCES



SUMMARY
This step-by-step article describes how to create a secure Web Distributed Authoring and Versioning (WebDAV) publishing directory.

back to the top

Create a WebDAV Publishing Directory

 * 1) On the Microsoft Windows 2000 desktop, click My Computer.
 * 2) In the Inetpub directory, create a physical directory. For example, if you name the directory WebDAV, the path to this directory is C:\Inetpub\WebDAV. You can put this directory anywhere except under the Wwwroot directory. Wwwroot is an exception because its default discretionary access control lists (DACLs) are different from those on other directories.
 * 3) Click Start, click Programs, click Administrative Tools, and then open the Internet Information Services (IIS) snap-in. Click to select the Web site in which you want to create the virtual directory, and then map it to the physical directory that you created in step 2.
 * 4) Type WebDAV as the alias for this virtual directory, and then link it to the physical directory that you created in step 2.
 * 5) Reset the default NTFS file system permissions to something more restrictive. Users need at least Read permissions to see the directory. If users want to upload content, users also need Write permissions.
 * 6) Grant the Read, Write, and Browsing access permissions for the virtual directory from the IIS Microsoft Management Console (MMC). This grants users the right to publish documents on this virtual directory and to see a list of the files in it.

NOTE: Granting Write access does not give a client the ability to modify Active Server Pages (ASP) pages or any other script-mapped files. To allow these files to be modified, you must grant Write permissions and Script source access after you create the virtual directory.

back to the top

Authentication
 Set up Secure Sockets Layer (SSL). For more information, click the following article number to view the article in the Microsoft Knowledge Base:

290625 How to configure SSL in a Windows 2000 IIS 5.0 test environment by using Certificate Server 2.0

 After you have installed the certificate on the Web server, enable Basic authentication on the WebDAV virtual directory in the IIS MMC:  Click Start, click Programs, and then click Administrative Tools. Click Internet Information Services. This opens the MMC for IIS. Locate your WebDAV publishing directory under the Web site that you created. Right-click the directory, and then click Properties. In the window that appears, click the Directory Security tab. Under Anonymous Access and Authentication Control, click Edit. This opens the Authentication Methods window. Click to select Basic authentication for the virtual directory. Make sure that nothing except Basic is selected.</li> Click OK in the next two windows so that the settings take effect.</li></ol> </li></ol>

back to the top

Troubleshooting
For a user to log on to a server using Basic authentication, their user account needs Log on locally permissions. You can add these permissions from the Local Security Policy.

back to the top

<div class="references_section">