ASP.Net – Security Levels

The Shared ASP.Net services provides various options when it comes to choosing who can access your website. While at first it may look intimidating, the concept is quite simple. Each of the two axes provides the where and the who of the security system. The numbers 1-4 are locations of potential users (the where) and the letters A-H are groups (the who) that can access your site. So it is as easy as choosing the where and then choosing the who and finding the intersection in the table. Below is a grid layout of the security levels which will allow you to do that, and below that are some examples of the most common requested security levels.

(Some User/Group Restrictions available in our Shared Apache HTTPD environment are not available in our Shared ASP.Net environment.)

ASP.Net Security Levels
IP Address Restrictions
1. Open to Any Address (no restriction) 2. Open to Any Purdue University Address 3. Open to Any Purdue University West Lafayette Address 4. Open to a Custom List of IP Addresses (a subnet, block, etc.)
User/Group Restrictions
A. Open to Any User (no restriction) 1A 2A 3A 4A
B. Open to BoilerAD Account & Password 1B 2B 3B 4B
C. Open to Purdue Faculty & Staff Only n/a n/a n/a n/a
D. Open to Purdue Students Only n/a n/a n/a n/a
E. Open to a Department or Group of Departments n/a n/a n/a n/a
F. Open to a Specific Career Account List1 1F 2F 3F 4F
G. Global ID & Password (not LDAP) n/a n/a n/a n/a
H. Custom2 1H 2H 3H 4H

1 This takes the form of a customer-maintained BoilerAD group.
2 Contact Web Services for assistance.

Examples

Below are some examples of how to use the table, each of the bold phrases are the key components in the questions.

Example security levels
Desired Access Requested Security Level
I want only people on the West Lafayette Campus to access my site but it doesn’t matter who they are Any Purdue University West Lafayette Address and Any User = 3A
Any Purdue West Lafayette Address = 3 Any User = A
I want a group of users for my site and it doesn’t matter where it’s accessed from Any IP Address and Group of Users = 1F
Any IP Address = 1 Group of Users = F
I want a certain subnet to access my site with their Career Account Specific Subnet and Purdue Career Account = 4B
Specific Subnet = 4 Purdue Career Account = B