Flicks FAQ: Browser Based Remote Administration

Q. Browser Based Remote Administration

Copy the entire aspAdmin installation subdirectory from the installation directory to a script enabled directory under your web root. Use a browser to go to this directory (via IIS, not via the file system) and remotely administer via html and asp.

You may wish to rename the directory, so that malicious people will not immediately guess where it is.

Be sure to set up protection for this directory. Click on the link "Administrator Settings", which will indicate whether the current directory is protected, and offers a single button to set up AuthentiX protection for that directory.

There other ways to protect the directory, for example "By Referrer", which can be used in combination.
In addition the Operating System allows you to protect with NT protection, and/or combine any of these methods with SSL.

Apply the level of protection that you feel is appropriate.
Definitely do not announce to the world the location of this directory and leave it unprotected! (Do I even need to say this?)

Make sure the Application protection level is set to Low (IIS Process). (IIS5 and above) or NOT "running in its own application space" (IIS4).

For IIS6 and above it should run fine as is. You can run it in its own application space.

For IIS6 and above make sure Active Server Pages (ASP) is enabled:
In IIS Manager, expand the local computer, and then click Web Service Extensions.
In the details pane, click Active Server Pages, and then click Allow.

AuthentiX ISP Only:

Copy the entire aspAdminISP installation subdirectory from the installation directory to a script enabled directory under your customer's web root. Use a browser to go to this directory (via IIS, not via the file system) and remotely administer via html and asp.

You may wish to rename the directory, so that malicious people will not immediately guess where it is.

Apply the level of protection that you feel is appropriate.
Definitely do not announce to the world the location of this directory and leave it unprotected! (Do I even need to say this?)

If you are setting up remote administration for an Administrator by host-header, go to the incl.asp file in aspAdminISP directory you have just copied and uncomment the line with
protectedDomain = "hostheader.com"
Change the value to be the appropriate host-header name.
10/6/03: You need to enable the host-header for protection, then restart IIS for the filter to read in the new host-header information.

If you are setting up remote administration for an Administrator by directory:
First add a new administrator from the main AuthentiX ISP dialog ("Add"). Check the option button for "Directory Based Administrator" and enter appropriate values in the text-boxes.

Then go to the incl.asp file in aspAdminISP directory you have just copied and uncomment the line with
protectedDomain = "hostheader.com"
change it to:
protectedDomain = "Dir1"
Change the value to be the unique descriptive name (UDN) you entered in the Add/Edit Administrator dialog (here it is Dir1, but enter whatever you set the UDN to be).

If you set this administrator's password, be sure to set the password in the incl.asp line here: auth.SetVirtualDomainPassword("adminPassword")

For superUser administration (allowing you to create host-header administrators remotely, copy the entire aspSuperUser installation subdirectory from the installation directory to a script enabled directory under your own web root. Use a browser to go to this directory (via IIS, not via the file system).

Set the password
auth.SetSuperUserPassword("superUserpassword")
in the incl.asp file to match the password you set in the Options/ISP AuthentiX dialog at the console.

Also see here , and here

Back to the top of the FAQ

Prev Next