|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
how to limit access to some domain-users?Hi,
We run an intranet application with integrated windows authentification, so no logon-prompt appears, but then all domain-users can use that aplication. How to limit that to some domain-users? The only limitations i can see in IIS is domain and IP restrictions, not user restrictions. Thanks Phil Configure NTFS permissions on the files/folders. Remove permissions from
"Everyone", and add in the users/groups that should have access to the files/folders. IIS doesn't perform authentication (or authorization) itself. It relies on Windows to do that. So you use Windows user accounts, and you use Windows NTFS permissions. Cheers Ken Show quoteHide quote "phil" <s**@sd.dc> wrote in message news:O4g7$AncGHA.5016@TK2MSFTNGP04.phx.gbl... > Hi, > > We run an intranet application with integrated windows authentification, > so > no logon-prompt appears, but then all domain-users can use that > aplication. > How to limit that to some domain-users? The only limitations i can see in > IIS is domain and IP restrictions, not user restrictions. > Thanks > Phil > > Thanks
Show quoteHide quote "Ken Schaefer" <kenREM***@THISadOpenStatic.com> wrote in message news:e8TR0kocGHA.5048@TK2MSFTNGP04.phx.gbl... > Configure NTFS permissions on the files/folders. Remove permissions from > "Everyone", and add in the users/groups that should have access to the > files/folders. > > IIS doesn't perform authentication (or authorization) itself. It relies on > Windows to do that. So you use Windows user accounts, and you use Windows > NTFS permissions. > > Cheers > Ken > > "phil" <s**@sd.dc> wrote in message > news:O4g7$AncGHA.5016@TK2MSFTNGP04.phx.gbl... > > Hi, > > > > We run an intranet application with integrated windows authentification, > > so > > no logon-prompt appears, but then all domain-users can use that > > aplication. > > How to limit that to some domain-users? The only limitations i can see in > > IIS is domain and IP restrictions, not user restrictions. > > Thanks > > Phil > > > > > > 
Other interesting topics
require client certificates SSL
Remote access to webserver w/website modifications Password protect web page SSL Certificates SSL or SSL VPN shared folder for iis website? IIS Admin Security Descriptors Problem (Event ID 10021) IIS to File Server Calling COM+ component from IIS 6 Annonymous local account IWA with multiple websites on one server |
|||||||||||||||||||||||
