.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Win Surprise Gifts!!!

Top 5 Contributors of the Month
Gaurav Pal
Post New Web Links

allowing remote users access to a specific site but not to any other network servers

Posted By:      Posted Date: October 13, 2010    Points: 0   Category :SharePoint


I've been checking previous postings.  We are opening up a sharepoint site for partner companies. Once they get to their site we don't want them on any other servers on the network. 

I followed the info in previous postings and created a group called Computer_Deny, created a user and added them to that group.  I created a GPO and linked it to the default domain with the user right deny access to this computer from the network enabled and the Computer_Deny group added.  Removed authenticated users from the filtering and added the Computer_Deny group.

did gpupdate /force

restarted an internal machine for testing.  Logged on as the user I created, the user can't get to any server except the domain controller.  What I'm not sure about....they need to authenticate with the DC, I believe, once they finish their HTTPS entry and then need to get to the sharepoint server.  If that is true, the authentication process has to happen on the DC.  I would think the authentication process is different that a user trying to access a computer from the network.  Am I correct?  Am I least moving in the right direction?

The user can still access the DC various ways i.e. run command, entire network but NOT via RDP since that right has not been granted.  Some further research indicates that if

View Complete Post

More Related Resource Links

Allowing internal users access to Sharepoint site externally

Good afternoon.   This may be a simple answer (I hope so actually) but I haven't been able to figure this out. What I need: I have internal users who can access my Sharepoint site easily while logged onto my network, and external users who I have added to our Active Directory system who can access the site using our external URL.  Both work fine. What I am having problems with:  One of my users (internal) is on a different AD (he is on our European network) and he can not access the site either from the VPN (when he is in the US) nor from the external site (it will take him to the logon screen, but since he doesn't have an account on our AD, it won't let him in). I understood from our European IS department that all we had to do was give him both internal and external access to the Sharepoint site, and he would be able to connect from anywhere. So, how do I do that (give him both)?  Do I need to have our IS team turn on MOSS2007 to do this (it is not turned on today). Many thanks, I am still a newb at Sharepoint, but trying to learn quickly. Thanks, Jim  

All Users (Including Site Collection Admins) receiving Access Denied from one Site Collection

I usually spend my time in the forums answering questions.  But this time I need the help. I’ve got a client who somehow has succeeded in locking EVERYONE out of one of their Site Collections.  Users can authenticate to the site, but get an accessdenied page when you try to access anything in the site collection, including pages served from the _Layouts virtual directory.  The AccessDenied page shows that they are authenticated, but not authorized.  This is true for Site Collection admins and user’s who have been given Grant Full Control via a Web Application Permission Policy.  Central Admin and one other site collection are behaving normally.  I've already checked for database permissions - the service account can access the database fine. I've also checked for a locked database or overextended quota.  It's not that either. The accessdenied page url references the users list in the root of the site collection as the offending list denying access.   Does anyone have any ideas?Paul Stork SharePoint Server MVP

All users have "Limited access" to MOSS Site even Site Admins


hi All.

We are running MOSS 2007 Stand-alone server on server 2003 SP2.

We had perfectly running MOSS site with Document Libraries and Custom Lists with almost 10 subsites. 

Suddenly today no one can edit or upload any new items or documents.

Under "Site Permissions", all the users have "Limited Access" permission level including Site Admins as well.

I have logged in as Site Admin and "Edit user Permission" under "Site Permissions" is not available anymore.

I know its a security issue but is there any way I can reset the security settings on Parenet Site.

(All the the subsites inherit security from the parent site)

Customized sharepoint portal is not accessible to normal users unless a site admin access the site o


Hello there

I have created a sharepoint portal and customized it. I have created my own master page and there are many webparts implemented. This has been hosted in a MOSS server. When a normal user is trying to access the portal first thing in the morning, he is getting a "You are not authorized to view this page" error. But when a site admin access the site, there is no issue and he is able to access the site. The site admin does nothing in the site and once he has logged in to the site,  the user is able to access the site without any trouble.

I have tried to look into the master page gallery and has given full access to the users for "Style Resource Readers" user group. Even now the user is facing the same issue.

Kindly help in this regards,



Help needed! Access denied for the root site for all users except Site Collection Administrators?!


We had implemented an intranet for a customer. Last week on friday we completed the project and they were allowed access to it. Next monday they had done some changes while trying to learn SharePoint (among others the Site Members groups had been deleted) and since then they have been unable to access the root site (e.g. http://intradev/default.aspx) and get a SharePoint Access Denied message. While the root site fails, users can browse to the subsites (e.g. http://intradev/subsite/default.aspx) and view them just fine.

We've noticed that users that are in the Site Collection Administrators group can view the root site just fine. Due to this, we made an educated guess that users had no permissions on the root web. But explicitly adding permissions to the root web does not work. The logon still fails. While it doesn't work in the root web, the permissions are inherited to all subsites, and users can log on and browse those pages just fine.

I've checked pretty much everything. I've tried giving permissions to users in the root site. I've ensured in Central Admin that 'Full Control' does actually give full control of everything. Only thing I've not yet tried is restoring the content database to an earlier backup, where the site was working nicely. 

I'm totally confused by this problem. If you've got any ideas or have encountered a similar

Users dont have permissions to core.css on specific site


I have a sharepoint website where somehow the permissions on it got messed up.  Users with read access can get to the site, but when they get thier the site is messed up.  I can replicate the look by disabling core.css on the site.  I checked and the users do have core.css in the source, but If you try to load it you get access denied.

The masterpage is referencing the core.css file that is relative to the site, not the one in _layouts.

How do I fix this permissions issue, It seems liek the only way to access core.css is through sharepoint designer and in there I cant see a way to fix the permissions.

Some users are unable to access my intranet site with windows authentication


Hi All

I have an intranet site that i set up to windows authentication. It works fine most of the time but some departments wont be able to access the site and will be asked to enter user name and password.
I checked their Active Directory account and the only difference i could see was that the  organizational unit parameter was different than the rest of the users. But im puzzled on what i can do to fix it and have them accessing the application.

Any ideas?

allow outside users to access sharepoint intranet site


Hi techies,

I would like to create a new site on Sharepoint, Access to the site is required by both internal and external users, so it means they will be few people outside the  domain that we need to give access to the site.how to achive this.


thanks in advance.


Nag: http://nagaraju-sharepoint.blogspot.com. Posting is provided with no warranties.

How to restrict access to a SharePoint Document Form Library while allowing users to fill out and su


We have created a MS InfoPath form with it's corrsponding SharePoint Document Form Library, but would like to restrict the access to the SharePoint Document Form Library. After the user completes and submits the forms then he/she should not be able to go into the SharePoint Document Form Library and view the form. In order to allow users to fill out and submit an InfoPath form, Contributor level access is required to be granted. But Contributor level access allows them to view not only the form he/she has created but everyone else's which is not acceptable in this particluar situation. The solution we've come up with is to grant Contributor access to the SharePoint Document Form Library when the Submit button is pressed using stsadm grant the user Contibutor role. Then remove the access once the submission is completed.

We would be interested to know if there is a better process to accomplish this task. And, of equal importance, the coding that is required to execute this task.

Allowing external access to a MOSS 2007 site?


I know this has been asked a million times but...Allowing external access to a MOSS 2007 site

I just can't figure it out, here is what I have done so far;

  •  Extended the web application the I want to access externally on port 39397
  •  NTLM Authentication
  • Allow Anon = No
  • Use SSL = No (Ideally I will want to use SSL but just trying to get it to work first)
  • URL = http://<servername>:39397
  • Zone = Internet (I really do not understand what these zones do, I have tried extranet and Internet)

Then I have gone to Alternate Access mappings and;

  • set the Public URL for the Internet zone to be http://<FQDN>:39397
  • created DNS record internally for <FQDN> to point to <server> for testing purposes


So internally this works and I can navigate the site but on my firewall I have set up NAT for port 39397 to point to <server> but the page never loads...What am I missing?

MOSS 2007 Version

Server 2003 SP2 32bit




Getting list of users reporting from specific Manager from Active Directory


Dear All,

I am have requirement like displaying all the user information reporting to specific manager from Active Directory.

Please help me regarding this.



Create web site specific to mobile device, how to detect?



I have a website that is written in .Net 2.0 which uses all the nice rich functionality of the web (Ajax, javascript etc..).  However I have noticed that the site does not display very well on mobile devices. 

So therefore I would like to create a more streamlined version of my site that is better tailored to these devices.  However how do detect that the user has come to the site via a mobile device and how can i redirect them to my tailored page

Many thanks in advance

Site Skinning: Rich XML Classes Let Users Personalize Their Visual Experience on Your ASP.NET Site


One way that Web sites and applications become better able to meet the needs of customers is by allowing them to personalize their experience. For Web sites, this means displaying the content as the user wants to see it. For rich-client applications, this often means allowing the user to choose the user interface through a technique known as skinning, which is similar to themes in Windows XP. This article shows how you can apply skinning to Web sites, wrapping their functionality in a new user interface. The technique uses the rich XML classes in the .NET Framework and the built-in extensibility of ASP.NET.

Harry Pierson

MSDN Magazine March 2003

Provisioning: Use Web Services Provisioning to Control Access, Usage, and Billing on Your Site


Building Web Services to provide enterprise-level solutions is only the first step. You need to take care of the infrastructure aspects of your solution as well, including provisioning, billing, security, and reporting. In this article, the author uses the .NET Framework and SQL Server 2000 to design a provisioning system that will take care of all these housekeeping tasks. He discusses the general requirements of a Web Service provisioning system, walks through the implementation, and then outlines various scenarios for putting this system to work.

Chandu Thota

MSDN Magazine December 2002

Using Remote Data Access with SQL Server CE 2.0

Microsoft SQL Server CE edition is the database server built by Microsoft to run on mobile devices. Besides being a standalone database for mobile applications, SQL Server CE also allows you to connect to your desktop SQL Server 2000 and perform remote data access and merge replication. In this article, you will learn how to build a .NET Compact Framework mobile application using Visual Studio .NET 2003 and how it can perform remote data access using SQL Server CE 2.0.

For more information on .NET Compact Framework, see my previous article, "Developing Pocket PC Apps with SQL Server CE."
Features of SQL Server CE 2.0

Figure 1 shows the main components in SQL Server CE and its relationship to SQL Server 2000 (on the desktop).

Create My Site for FBA Users Error


Hi Guys,

I am trying to create mysite for FBA Users programatically (FYIP: I have done all the configurations for FBA in SSP and mysite host and I am able to create mysite from UI for FBA Users). The problem exists only when I am creating MySite programatically!!!










ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend