How to deploy data access pages over the Internet

Data access pages permit you to create data-bound Web pages that you can view in Microsoft Internet Explorer 5.0 or later. These Web pages are typically intended for intranet use. However, with special considerations, data access pages can be deployed successfully over the Internet. Office Web Components must be installed on the computer that views the data access pages. By default, the components are installed with any Microsoft Office 2000 installation. This article describes considerations that you must be aware of before you can deploy data access pages over the Internet. These considerations do not address possible security issues. If you have possible security issues, or if you want additional information about possible methods that you may use to enhance security for data access pages, see the "References" section. Because the majority of the steps that are involved are performed on the server, this article assumes that you have a correctly configured Web server on the NTFS file system partition for deployment. If you are not hosting the Web site to house the data access pages, you must be able to work with your Internet Service Provider (ISP) to correctly configure the Web server.

Create a User for Anonymous Access
Depending on whether you use Microsoft Windows NT 4.0, Microsoft Windows 2000, or Microsoft Windows Server 2003, the steps that you must follow to create a user for anonymous access may vary. On the Web server where the data access pages are located, follow these steps: Windows Server 2003 1. Click Start, point to All Programs, point to Administrative Tools, and then click Computer Management. 2. Expand Local Users and Groups, and then click the Users folder. 3. On the Action menu, click New User. 4. In the User name box, type DAPInternetAccount. 5. Click to clear the User must change password at next logon check box, click to select the User cannot change password check box, click to select the Password never expires check box, and then click Create. 6. Click Close to close the New User dialog box, and then close the Microsoft Management Console.

and then assign Full Control permissions to this folder. 3. Click OK to close the Msadc Properties dialog box. Click OK to close the dialog box. Note If your operating system is installed on a different logical drive. 2. you can omit these steps.Configure Folder and File Permissions The user who interacts with your data access pages over the Internet must have Windows NT file permissions to the database to work with the locking (. Replace <<Type names separated by semicolons or choose from list>> with <ServerName>\DAPInternetAccount. This results in read permissions being assigned to the subdirectory. Right-click the MSADC folder. click Properties. and then click to clear the List Folder Contents check box for the MSADC folder. Therefore. use that drive letter. 8. Repeat step 1 through step 6 again. and then click My Computer. 7. click the Security tab in the MSADC Properties dialog box. Repeat step 1 through step 6.adp). the user must have read permission for the folder where the Remote Data Service (RDS) components are located. you must grant the appropriate permissions to the user who you created in the previous section. Windows Server 2003 permissions that are assigned to a folder automatically propagate to the files that are in that folder. This file is created when the user works with an Access database. For additional information about how to configure RDS to run on a site other than the . and then close the MSADC folder. but select the folder where the database is located. but select the database file. Additionally.ldb) file. 5. the DAPInternetAccount may have already inherited Full Control permissions on the database file. Windows Server 2003 1. where <ServerName> is the computer name of the Web server. you must configure remote data services (RDS) on the Web server. By default. 6. Make sure DAPInternetAccount is selected. Move to the C:\program files\common files\system folder. and then click Add. Therefore. You can configure RDS by using the MSADC virtual directory on the server. These steps do not apply to Microsoft SQL Server. and then assign Full Control permissions to this file. 4. Click Start. Configure the Web Server To return data to data access pages over the Internet. The following steps must be performed on the Web server: Note If you deploy data access pages in an Access project (.

microsoft. and then click Properties. 7. and then expand Web Sites. Move to the Execute Permissions drop-down list in the MSADC Properties dialog box. click Edit. or on a PDC if you run Microsoft Windows NT Server 4. Click OK to close the Authentication Methods dialog box. and then click Virtual Directory. 12. and then click OK. 8. In the Virtual Directory Creation Wizard. click Granted Access. Click to select the Enable anonymous access check box. Under IP address and domain name restrictions. 6. and then click Scripts and Executables. point to New.0 Virtual Server Important Microsoft does not recommend that you run Internet Information Services (IIS) on a domain controller (or on a BDC.com/kb/184606/ ) HOWTO: Use RDS from an IIS 4. and then click OK. click Next. Note WebServer is the actual computer name that is assigned to your Web server. and then click Browse that is next to the User name box. 13. Click OK to close the MSADC Properties dialog box. type DAPInternetAccount. click Next two times. point to Administrative Tools.default Web site. type C:\Program Files\Common Files\System\msadc in the Path box. and then click Edit under Authentication and access control. Click the Directory Security tab. Windows Server 2003 1. 3. . 9. click the following article number to view the article in the Microsoft Knowledge Base: 184606 (http://support. In the Select User dialog box.0) because IIS performance is severely degraded because of the network load and the processor load that is imposed by authentication and other roles that are performed by domain controllers. Microsoft does not test data access pages on a domain controller that runs IIS and does not support this configuration. Right-click the new MSADC virtual directory. and then click Finish. or you may receive the following error message: Error: Safety settings on this computer prohibit accessing a data source on another domain. 5. type MSADC in the Alias box. In the IP Address and Domain Name Restrictions dialog box. 11. and then click Internet Information Services (IIS) Manager. Click Start. click Next. 4. Right-click Default Web Site. Additional Configuration Settings for Windows Server 2003 You must apply the following configuration settings. move to the Enter the object name to select box. 10. Expand WebServer (local computer). and then close IIS Manager. Therefore. 2. point to All Programs.

4. 2. change: 3. enter MSADC in the Extension name box. 5. point to All Programs. On the Web server. 2. When the New Web Service Extension dialog box appears. .sql=" " You make this change to permit you to use any SQL statement against any data source on the Web server. Close IIS Manager. In the "[connect default]" section. open the Msdfmap. Click Start. 1. Modify the Msdfmap.ini File You can use the Msdfmap. 4.1.ini file in Notepad. and then expand Web Server Extensions. In the "[sql default]" section. sql=" " -to. Expand WebServer (local computer) (where WebServer is the actual computer name that is assigned to your Web server). change: 5. Click to select the Set extension status to Allowed check box. 7.ini file on the Web server to permit data connections to the server. Click the Add a new Web service extension hyperlink. When the Add file dialog box appears. point to Administrative Tools. and then click OK. 6. and then click OK. 3.dll. You can modify this file in a variety of ways to permit data connections or to limit connections to a particular database. This file is found in the \WINNT folder. and then click Add. Access=NoAccess -toAccess=ReadWrite You make this change to permit read connections and to permit write connections to all data connections that are on the server. type C:\Program Files\Common Files\System\msadc\msadcs. and then click Internet Information Services (IIS) Manager.

6. open the data access pages in Microsoft FrontPage 2000. Save and then close the Msdfmap. Start FrontPage 2000. . Verify that the connection string points to a path that can be seen from the Web server. Where to Put the Database and the Data Access Pages Although not required. put the database in a folder other than the Web site folder. you can store the database on the Web server with the data access pages. 7. a malicious user may potentially download the database. click Select Page. To enhance security. click Field List. and then click OK. While certain steps in this article may be modified depending on the security settings that you select. However. Modify the Data Access Pages Because data access pages look on the client side to find the data source. 2. this section must be completed to successfully deploy three-tier data access pages. put the database in a different folder on the Web server. 6. 4. change the UseRemoteProvider property to True. 3. you may not be able to save changes to data access pages that are opened directly in Access 2000 by using the URL for the data access pages. Important If you are not hosting the Web site. Close and then save the data access page. and then click Connection.6. 4. you must configure three-tier data access pages by using the UseRemoteProvider property of the page. 8. 5. On the View menu. the Web site folder is c:\inetpub\wwwroot. click Find. On the Data tab. 5. Open the data access page in Design view. 3. 9. routine deployment of data access pages does not work over the Internet. On the View menu. 1. By default. click the HTML tab. if the field list does not appear. click Properties. On the lower-right side of the screen. when you install IIS. Right-click the name of the database that is at the top of the field list. Click OK to close the Data Link Properties dialog box. Type the URL for your data access page on the Web server. On the File menu. On the Edit menu. Type ConnectionString. if the property sheet does not appear. On the Edit menu. to enhance security. click Open. and then click Find Next. such as c:\inetpub. and then edit the connection string manually as follows: Note You must change the UseRemoteProvider property to true in Access before you open the data access pages in FrontPage 2000. Instead. 2. Instead.ini file. Because the wwwroot folder is typically open to the public. 1.

7.0 or later to test the deployment. 8. . Edit the "Data Source" section of the connection string so that it points to the path of the database on the Web server. Open the URL for the data access page in Internet Explorer 5.

Sign up to vote on this title
UsefulNot useful