Password Protecting - Not Recursive

[JustinK101]

Hello, I have a directory that I password protected in Plesk admin, works fine. There is another directory inside the password protected directory that I DO NOT want password protected. I used to be running apache, and I setup the directory to not password protect via a .htaccess file, but now that I am running IIS and Plesk I cannot figure out how to exclude this directory from being password proteted. Thanks for the help.

 

[JustinK101]

Anybody have any idea?

The problem is when you password protect a directoy via the plesk control panel, the password protection is recursive. How do I exclude a directory from inheriting the password protection from its parent?

Thanks!

 

[pleuck]

In Plesk
Click Web directories>click show all>click on the directory you want to set>click permissions.
Un-check
Inherit from parent the permission entries that apply to child objects. Include these with entries explicitly defined here
Then set the permissions the way you want. You can use the advanced section if needed.

Or through Windows = Right click folder>security>advanced
Un-check
Inherit from parent the permission entries that apply to child objects. Include these with entries explicitly defined here
Then set the permissions the way you want.

Hope it helps.

 

[JustinK101]

Humm I followed the steps and went inside the directory I want to exclude from password protected and then clicked permissions and uncheckd the box:

Allow inheritable permissions from the parent to propagate to this object and all child objects. Include these with entries explicitly defined here.

No luck though, it still asks for a password when I try and access the folder. Any other ideas? Here is a screen shot of the folder permissiosn advanced for the folder I want to NOT password protect. The folder above it, is protected.

Thanks for the help!

 

[pleuck]

I woould check the permissions of the IIS users against a folder that is not protected. Usually, once the permissiopns are changed you'll have to change them back.

 

[JustinK101]

pleuck:

I have looked and tried comparing a non-protected directoy against a protected directory, and I cannot find any differences in the plesk permissions -> advanced tab. They look identical. I suspect password protecting inst a feature of permission but perhaps something else? I could be wrong though.

Anybody know? I don' t have to do this through, plesk, I can try via IIS manager. I have nosed around IIS Manager and could not find any particular button or checkbox that says password protect the directory. Thanks!

 

[pleuck]

Try going to IIS manager and looking at
properties>directory security>autherntication "access control" and look at the authentication methods.
Make sure "enable anonymous access" is setup correctly.
Effective permissions can be tough to troubleshoot.

 

[JustinK101]

pleuck:

After comparing a folder that is password protected and a folder that is not, I have determined password protecting by Plesk is not something you can control in the IIS manager.

The directory security tab for a password protected folder and not-password protected folder are identical, both have "ALLOW Anonymous ACCESS" and both use the same login name for that:

IUSR_yjpalmer

Also, I tried setting the check box for the folder I want to not password protect, that is under a password protected folder, to NOT inhert permissions, but that still didnt work.

Also, right clicking a folder and selecting permissions then advanced for a password protected folder, and then, not a password protected folder result in the exactly same users and permissions.

This is very odd, does anyknow how Plesk acutally sets up password protecting when you use web-folder -> protection -> enable password protection?