web application authentication control
Posted on 2011-10-24
This is my problem. I have a web database application (ASP) hosted on IIS7 on the company's server, behind a regular COMCAST router. This is cloning an internal database that the employees (about 20) can access while at work. The web side would allow them to access the data in the same way while on the road or at a client or home. The request is that only these 20 people should access the website and if they give their username/password to
anybody, these latter ones should be prevented from accessing. Hence machine level control.
I tried to use client certificates, I was even successful on my test server and one client. Porting the steps on the production server did not work for me.
I would try any other solution that would allow me to control at the machine level the access to this web application. Please help.