My windows 2003 server is having an application which is accessed through portal.
Currently it can be accessed by everyone in our organisation. I wanted to restrict the access and allowing access to only few users. Users are active directory users and the requirement is as follows:
1) when anyone type the IP address of the server it should ask the username and password (this should be different from domain password, I have created users locally on this server). Only users allowed should be able to access it.
I went to IIS and right click the particular website , permission gave everyone deny and then gave full control to only the users created locally but the deny permission takes precedence.