|
Posted by Geoff Coope on September 24, 2006, 7:12 am
Please log in for more thread options
Hi,
I developed an Active Server Object, ActiveX DLL that I use through
ASP. I was wondering what the correct permission accounts should be on a
Windows Server 2003 Machine?
If I register the ActiveX using regsvr32.exe then I have to add additional
user groups through the registry else ASP cant find the object (via asp
scripts).
To get it to work through trial and error I found that I needed to add the
following group permissions (on the registry key
HKEY_CLASSES_ROOT\libaspobj.aspobj)
Administrators [Full Control]
<Current Logged in Admin> [Special]
CREATOR OWNER [Special]
Power Users [Read]
System [Full Control]
Users (Machine\Users) [Read]
This allows IIS5/6 to access the ActiveX through ASP code but I am not sure
of what a security risk this would pose on a live webserver.
Can anybody help me here as i know very little about the security of this.
Regards
Geoff
PS. This is a Active Server Objects ActiveX created in Delphi and is non
visual but it does
create and delete files on the server.
| 
XML Sitemap