I am thinking about setting up a seperate homepage on my website for staff members that will contain links to the sites we use reguarly, quick links and access to SmarterMail (a bit like an intranet) but I don't want this page available to anyone who is just browsing the internet and comes across it. Do you know if there is a way I can protect a page so that only my staff can view use it as there homepage but without them having to logon everytime??? Maybe restricted by IP address or something??? Or is this something I should have posted on the forum??? Any help would be great!
Agree with that - mind you do need to log into helm if you need to reset the password but apart from that it works really well. Also great for CMS scripts as it saves having to Password protect individual pages
I suggest simply having a login script for both your website and staff. You can use the same login form for both users and staff but point them to different areas or folders of your site. This is what I have done with my helpdesk.
I don't want to have to enter a username and/or password everytime I want to open my homepage tbh!! And I think using a secure folder I would have to do that would I not? Is there no way you can allow a page dependant on the IP address?
...... Im no expert ..... Using an IP system is useless! My IP changes every time I connect! What if I want to log in when at work? I suggest you do make it the user has to log in every time for security reasons
No using an IP system is pointless. Other than using some sort of credentials to login there's no other way I can suggest you go about it. If you don't want normal users to enter this particular area then a username and password is your only route I'm afraid. From what I can see anyway...
Why would you secure a homepage? If you want proper security you would use a username/password there is nothing stopping you clicking "remember user/pass" check box.
You would as it's a login box prompt. Simple assign your browser to remember the details so you only have to do it once. Both IE and Firefox have the facility to remember your details. If you must do this found this article in asp that you could apply to all pages - once you have added all the required IP address Code: <% 'Grab the visitor IP Dim myIP myIP = Request.ServerVariables("REMOTE_ADDR") 'Edit the 123.456 to your IP range or 'specific IP if you're the admin ;) to 'restrict access if InStr(myIP, "123.456.") > 0 Then 'allow access Else 'get outta here! Response.redirect "IPdenied.asp" End if %>
Guys - Think this has been over complicated (by me) quite a bit! The homepage will just be a reference for staff with links to important sites and services that we use reguarly. It won't contain any sensitive information. What I don't want is someone to be able to do a google search and my staff homepage come up, so to prevent this I think there is a text line you can add to the top of a page to stop search engines indexing it...anyone know what it is??? I think then if I bury it deep into the sight then it should be fine. Thanks for all your help!
if its just for staff reference, links etc.. why not just use a protected forum that will hold all the info.
To stop search engines indexing your page there is two ways you can stop them. The best and easiest was to do this is to place a robots.txt file in your root directory of your website. All you have to do is type out the files or directories you wish to exclude from the indexing. The example below will exclude aboutus.asp and the folders below it. Just change the reference to your sites files and folders. If you want to exclude folders (say subdirectories) you can use a wildcard which is a '*' (take out the quotes). user-agent: * Disallow: /aboutus.asp Disallow: /images/* Disallow: /login/ Disallow: /domains/ Disallow: /forum/ Disallow: /flash/
