Configuring Access Permissions and Virtual Directories for Microsoft's IIS version 5 Server

Follow these steps to set ShopSite access permissions and create virtual directories IIS version 5. Be sure to go step by step through these instructions, or ShopSite will not work.

Table of Contents

I. Create ShopSite Virtual Directories
II. Set Authentication Methods
III. Set Access Permissions

  1. Create ShopSite Virtual Directories
  2. Because the ShopSite, Shopping Cart, and images directories are not located under the Web server root, you must create virtual directories that are aliases of the actual directories. You must also set the correct permissions for those virtual directories.

    1. Open the Internet Information Services window by clicking Start® Programs® Administrative Tools® Internet Services Manager (the structure of your Start menu may be different).
    2.  

    3. Click the plus sign (+) next to your server's name, then click Default Web Site.
    4.  

    5. Right-click on the shopsite directory.
    6.  

    7. Select New and then Virtual Directory to start the Virtual Directory Creation Wizard.
    8.  

    9. Click Next to advance to the Virtual Directory Alias screen. Enter "ss" as the alias for the ShopSite virtual directory.
    10.  

    11. On the next screen, browse to the C:\Program Files\ShopSite\ss directory, then click Next.
    12.  

    13. On the next Wizard screen, check the Execute box. Do not check any of the other boxes for access permissions.
    14.  

    15. Click Next and then the Finish button.
    16.  

    17. Repeat steps 3 through 8, but this time use "sc" for the virtual directory alias, and link it to the C:\Program Files\ShopSite\sc directory.
    18.  

    19. Repeat steps 3 through 6 to create a virtual directory named "images" for the C:\Program Files\ShopSite\images directory. When you get to the screen for setting access permissions, only check the Read box.

  3. Set Authentication Methods
  4. The ss virtual directory must be password-protected and only allow access to the merchant. Other directories must allow access to all Web users.

    1. From the Internet Informatin Services window, click the shopsite directory in the left pane so that the sc, ss, and images directories are visible in the right pane.
    2.  

    3. Right-click on the ss directory, then select Properties from the pop-up menu.

       

    4. On the Virtual Directory tab, uncheck the Log visits box, unless you want to track how often the merchants access their stores. ShopSite does not use this information to generate reports.
    5.  

    6. Click the Directory Security tab, then click the Edit button in the Anonymous access and authentication control section.
    7.  

    8. Check the Basic authentication box, and uncheck the Anonymous access and Integrated Windows authentication boxes. Click the Yes button when asked if you're sure you want to enable anonymous access. These settings will allow merchants to access ShopSite with their username and password, but will keep others out of this directory.
    9.  

    10. Click OK to return to the "ss Properties" dialog box, then click OK again to return to the Internet Information Services window.
    11.  

    12. Right-click on the sc directory, then select Properties from the pop-up menu.

       

    13. On the Virtual Directory tab, uncheck the Log visits box, unless you want to track customer traffic on the order form. ShopSite does not use this information to generate reports.
    14.  

    15. Click the Directory Security tab, then click the Edit button in the Anonymous access and authentication control section.
    16.  

    17. Check the Anonymous access box, and uncheck the Basic authentication and Integrated Windows authentication boxes. These settings will allow customers (anonymous Web users) to access the checkout and order form CGI programs in the Shopping Cart directory.
    18.  

    19. Click OK to return to the "sc Properties" dialog box, then click OK again to return to the Microsoft Management Console.
    20.  

    21. Repeat steps 7 through 11 for the images directory to allow anonymous access.
    22.  

    23. From the Internet Information Services window, right-click the StoreName directory in the left pane, then click Properties. (This directory will contain the store pages.)
    24.  

    25. On the Directory tab:
      • Make sure that the Log visits box is checked so that IIS tracks customer visits to the store. ShopSite uses this information to generate reports.
      • Enable Read access, but do not enable Write access.
      • Unless it is your policy for your server, do not check the boxes for "Directory browsing" and "Index this resource." ShopSite does not need these features, but having them enabled will not interfere with ShopSite.
      • In the Execute Permissions drop-down list (the bottom of the dialog box), select None to prevent merchants from running any kind of scripts or programs from their store pages. If your hosting policy allows merchants to include scripts or CGI programs in their stores, make the appropriate selection. These settings for the store's HTML output directory are not related to the settings for the ShopSite and Shopping Cart CGI directories.

       

    26. Click the Directory Security tab, then click the Edit button in the Anonymous access and authentication control section.
    27.  

    28. Check the Anonymous access box, and uncheck the Basic authentication and integrated Windows authentication boxes. These settings will allow customers (anonymous Web users) to browse the store's pages.
    29.  

    30. Click OK, then click OK again to return to the Internet Information Services window.
    31.  

    32. Close the Internet Information Services window.

    This table summarizes the IIS settings for ShopSite virtual directories:

    Virtual Directory Alias Physical Path Access Permissions Authentication Method
    shopsite/ss C:\Program Files\ShopSite\ss Execute (including Script) Basic Authentication
    shopsite/sc C:\Program Files\ShopSite\sc Execute (including Script) Anonymous Access
    shopsite/images C:\Program Files\ShopSite\images Read only Anonymous Access
    StoreName
    (not a virtual directory)
    C:\InetPub\wwwroot\StoreName Read only Anonymous Access

  5. Set Access Permissions
  6. In addition to configuring Web server access and authentication, you must configure directory access permissions through Windows Explorer.

    1. From the task bar, click Start® Programs® Accessories® Windows Explorer.

       

    2. Browse to the ShopSite directory, which the Standard install put at c:\Program Files\ShopSite.

       

    3. Right-click on the ss directory in the right pane, then select the Properties option.
    4.  

    5. Select the Security tab.

       

    6. If "Everyone" appears in the Name list, select it and then click the Remove button (unless it is the policy on your server to allow everyone access to all directories).
    7.  

    8. Click the Add button to open the Select Users, Computers, or Groups dialog box.
    9.  

    10. Scroll down the Name list and select the merchant account that you created earlier.
    11.  

    12. Click the Add button.

       

    13. If you want Windows Administrator accounts to have access to this directory (generally a good idea), select the "Administrator" account or "Administrators" group and click the Add button.

       

    14. Select the Internet Guest Anonymous Access account and click the Add button. The name for the anonymous account will usually be IUSR_ServerName.

       

    15. Click OK.

       

    16. In the ss Properties dialog box, be sure that the merchant account name is selected, then click the Full Control checkbox. Do the same for the Administrator account or group.

       

    17. Select the Internet Guest Account and set all permissions to Deny.

       

    18. Click OK to exit the Properties dialog box.
    19.  

    20. Repeat the above steps to set the permissions on all ShopSite directories to match this table (the Administrator account should always have Full control):

      Directory Merchant Access Type Internet Guest Access Type
      C:\Program Files\ShopSite\ss Full control Deny everything
      C:\Program Files\ShopSite\sc Full control Modify
      C:\Program Files\ShopSite\images Full control Read
      C:\Program Files\ShopSite\data\StoreName Full control Modify
      C:\InetPub\wwwroot\StoreName Full control Read


ShopSite Help and Resource Center
April 3, 2003
Give Feedback

© 2007, ShopSite, Inc.
ShopSite Shopping Cart Software