I'm trying to configure certain IIS Folders with binary file downloads to be restricted to role memeberships configured in MojoPortal.  (In IIS 7, .Net Roles can restrict access of ANY file, not just asp.net managed content.)

I installed the URL Athorization Service in IIS and I can set the authorization rules on various directories and I do get rights restrictions when I try to browse.

The problem is that even if I am logged in properly, access is still denied - IIS does not seem to be aware of the mojoPortal roles.

In IIS, it seems that though the mojoPortal is configured in IIS as a role provider, it isn't a TRUSTED role provider, so you can't view the roles through the console by default.  I don't think that mojoRoleProvider's assembly is strongly-named, so it cannot be configured as trusted.

To test, I turned allowUntrustedProviders="true" in the Administration.config, but still, the roles are not available in IIS for use in Authorization Rules.

Anyone done this kind of thing before?

I'm doing this because, as far as I know, the File Manager does not support access restrictions.

Thanks!