Granting or Denying Access to a Domain
Updated: August 22, 2005
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1
Use the following procedure to grant or deny access to a specific domain.
|You must be a member of the Administrators group on the local computer to perform the following procedure or procedures. As a security best practice, log on to your computer by using an account that is not in the Administrators group, and then use the runas command to run IIS Manager as an administrator. At a command prompt, type runas /user:Administrative_AccountName "mmc %systemroot%\system32\inetsrv\iis.msc".|
In IIS Manager, double-click the local computer; right-click the Web Sites or FTP Sites folder, an individual Web or FTP site, a virtual directory, or a file; and then click Properties.
Note Configuration settings made at the Web or FTP Sites level are inherited by all of the Web or FTP sites on the server. You can override inheritance by configuring the individual site or site element.
Click the Directory Security or File Security tab, and then do one of the following:
For Web sites, in the IP address and domain name restrictions section, click Edit.
For FTP sites, continue to the next step.
- For Web sites, in the IP address and domain name restrictions section, click Edit.
Click Granted access or Denied access. When you select Denied access, you deny access to all computers and domains, except to those that you specifically grant access. When you select Granted access, you grant access to all computers and domains, except to those that you specifically deny access.
Click Add, and then click Domain name.
In the Domain name box, type the domain name, and then click OK three times.
For more information about IP address restrictions, see Setting IP Address and Domain Name Restrictions.
For more information about subnet masks, see "Subnet masks" in the Windows Server 2003 Help and Support Center.