These best practices provide guidelines that can help you manage security for Microsoft Provisioning System effectively.
For more information on SQL Server installation and configuration, see the section called "Install SQL Server 2000 and Service Pack 1 or 2" in the installation documentation located in the root folder on the Microsoft Provisioning System product CD. For a single computer configuration, see install_single.htm. For a multi-computer configuration, see install_multi.htm.
Note
The Microsoft Provisioning Framework Software Development Kit (SDK) contains additional resources to help you deploy Microsoft Provisioning Framework (MPF). For more information on the SDK and how to use it, see Microsoft Provisioning Framework SDK and documentation.
For more information on general security guidelines, see the Microsoft Web site(http://www.microsoft.com/).
For more information about setting the access type, see Maintaining and updating namespaces and procedures and To view or modify the access type of a procedure in Provisioning Manager Help.
For more information on configuring the Requests security property, see Administering provisioning engines and Administering queue managers in Provisioning Manager Help.
For more information on Delegated Administration Console, see Delegated Administration Console.
For more information on using debugging options, see "Working with debugging options" and "Configure debugging options" in Delegated Administration Console Help.
For more information about Internet Information Services (IIS) security, see Internet Information Services 5.0 metabase ACEs.
For security reasons Microsoft Provisioning System configures the ASPEnableParentPaths metabase property as False. This prevents the use of the "..\" syntax in Active Server Pages (ASP) applications. Although you can change this property to "True" by selecting the Enable Parent Paths option in Delegated Administration Console or submitting a direct XML request to IIS Provider, Microsoft strongly recommends that you do not do so in a shared Web hosting environment.
For more information about this issue, see article Q184717 "AspEnableParentPaths MetaBase Property Should Be Set To False" in the Microsoft Knowledge Base(http://www.microsoft.com/).
For more information on IIS security, see Internet Information Services 5.0 metabase ACEs.