Click here to Skip to main content
15,902,447 members
Please Sign up or sign in to vote.
0.00/5 (No votes)
See more:
I am new to IIS. I am using the following version of the software.
IIS Version - 7.5
Windows Server Version- 6.1

I have an application where in I have to save the files to a particular folder in the IIS. I am storing it in IIS so that I can access that through the use of an URL (for example:

Here my problem is I have to give permission to this media folder so that it can have Read/Write/Create Folders/Files permission. I have to give this permission only to application users (users who has successfully login to the website), how this can be achievable?

I am quiet confused about ApplicationPoolIdentity for this? Can you one throw me a basic idea of how this permission can be achieved and can give me few links to learn the basic understanding of permissions in IIS.

Right now I am giving permission to Everyone to the folder, I am sure this is not a secured solution.

1 solution

You can post the content in FTP Folder and use the token generation logic to access the folder.

The token generation you can do for the authorized user.

Refer the below link.[^]

If you make directory browse enable for the folder under virtual directory any user who knows the url can download the content. There is no way to control this using apppool identity or impersonation.

Share this answer
Prasaad SJ 5-Nov-14 2:52am    
Hi.. Thanks for the reply. I have a separate folder to store all these files. Instead of using FTP, I need to use it with HTTP. How can I do that. ??

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

CodeProject, 20 Bay Street, 11th Floor Toronto, Ontario, Canada M5J 2N8 +1 (416) 849-8900