Restrict access to an intranet site to a specific group of users
Can't comment - sorry.
Based on this "allow Element for authorization", you should be able to specify each users like a groups. I.E.
<configuration>
<system.web>
<authorization>
<allow users="DOMAIN/robert.real, DOMAIN/silvia.dell" \>
<deny users="*" \>
</authorization>
</system.web>
</configuration>
You might also want to make that only Windows Authentication is allowed.
Related videos on Youtube
Zooltan
Updated on September 18, 2022Comments
-
Zooltan over 1 year
I have an ASP.NET site running in IIS7 on a local intranet. I want to restrict access to this site to a specific group of users. I think I should be able to do this by using Windows Authentication within IIS, but I'm having trouble.
I've enabled the Windows Authentication feature of IIS, and I've enabled Windows Authentication on my site in inetmgr. I set authentication in the web.config for my site:
<authentication mode="Windows" />
From what I've read, this should be all I need to do... but nothing seems to happen. I tried restricting access by using directory security within windows, and was able to deny access to all users by removing read access on the directory. But I wasn't then able to restore access to the specific users required. It feels like IIS doesn't know who the user requesting the page is, as though it never actually did any authentication.
Am I missing something?
-
Katherine Villyard over 10 yearsForgive me for asking the obvious question, but you removed the anonymous user, right?
-
Zooltan over 10 yearsNone of this is obvious to me... I disabled anonymous authentication for the site in IIS. Not sure if that's the same thing.
-
HopelessN00b over 10 yearspossible duplicate of Restrict access to IIS site to an AD Group
-
Zooltan over 10 yearsTried the suggestions at that link -- didn't work.
-