lapucca
asked on
How to setup an Intranet web application using IIS 7 on wind 2008 R2 server?
Hi, this site comes up (has ssl) https://ourdomain.xxx.yyy no problem.
i want to limit it first by setting it for just users on our network. I did the following:
1. in IIS Authentication I disabled the Anonymous Authentication and Enabled the Windows Authentication.
2. In IIS Authorization, I deleted the "Allow all users" and added "Deny Anonymous users"
Now, I''m on our network still, in the browser I type in https://ourdomain.xxx.yyy and now I'm getting page is not direction because it's trying to navigate to a form authentication. i don't want that. I just want Windows Authentication. How should I set this up? thank you.
Oh, I forgot to mention, this web server hosts many web sites and most of them are public site. This web site that I'm setting up would need to be constrained with only access to users on our domain and a couple of other partners' users which I plan t use "IP Address and Domain Restriction" in IIS. How should I configure for this type of access? Thank you.
https://ourdomain.xxx.yyy/Account/Login?ReturnUrl=%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FLogin%253FReturnUrl%253D%25252FAccount%25252FLogin%25253FReturnUrl%25253D%2525252FAccount%2525252FLogin%2525253FReturnUrl%2525253D%252525252FAccount%252525252FLogin%252525253FReturnUrl%252525253D%25252525252FAccount%25252525252FLogin%25252525253FReturnUrl%25252525253D%2525252525252FAccount%2525252525252FLogin%2525252525253FReturnUrl%2525252525253D%252525252525252FAccount%252525252525252FLogin%252525252525253FReturnUrl%252525252525253D%25252525252525252FAccount%25252525252525252FLogin%25252525252525253FReturnUrl%25252525252525253D%2525252525252525252FAccount%2525252525252525252FLogin%2525252525252525253FReturnUrl%2525252525252525253D%252525252525252525252FAccount%252525252525252525252FLogin%252525252525252525253FReturnUrl%252525252525252525253D%25252525252525252525252FAccount%25252525252525252525252FLogin%25252525252525252525253FReturnUrl%25252525252525252525253D%2525252525252525252525252FAccount%2525252525252525252525252FLogin%2525252525252525252525253FReturnUrl%2525252525252525252525253D%252525252525252525252525252FAccount%252525252525252525252525252FLogin%252525252525252525252525253FReturnUrl%252525252525252525252525253D%25252525252525252525252525252FAccount%25252525252525252525252525252FLogin%25252525252525252525252525253FReturnUrl%25252525252525252525252525253D%2525252525252525252525252525252FAccount%2525252525252525252525252525252FLogin%2525252525252525252525252525253FReturnUrl%2525252525252525252525252525253D%252525252525252525252525252525252FAccount%252525252525252525252525252525252FLogin%252525252525252525252525252525253FReturnUrl%252525252525252525252525252525253D%25252525252525252525252525252525252FAccount%25252525252525252525252525252525252FLogin%25252525252525252525252525252525253FReturnUrl%25252525252525252525252525252525253D%2525252525252525252525252525252525252FAccount%2525252525252525252525252525252525252FLogin%2525252525252525252525252525252525253FReturnUrl%2525252525252525252525252525252525253D%252525252525252525252525252525252525252F
i want to limit it first by setting it for just users on our network. I did the following:
1. in IIS Authentication I disabled the Anonymous Authentication and Enabled the Windows Authentication.
2. In IIS Authorization, I deleted the "Allow all users" and added "Deny Anonymous users"
Now, I''m on our network still, in the browser I type in https://ourdomain.xxx.yyy and now I'm getting page is not direction because it's trying to navigate to a form authentication. i don't want that. I just want Windows Authentication. How should I set this up? thank you.
Oh, I forgot to mention, this web server hosts many web sites and most of them are public site. This web site that I'm setting up would need to be constrained with only access to users on our domain and a couple of other partners' users which I plan t use "IP Address and Domain Restriction" in IIS. How should I configure for this type of access? Thank you.
https://ourdomain.xxx.yyy/Account/Login?ReturnUrl=%2FAccount%2FLogin%3FReturnUrl%3D%252FAccount%252FLogin%253FReturnUrl%253D%25252FAccount%25252FLogin%25253FReturnUrl%25253D%2525252FAccount%2525252FLogin%2525253FReturnUrl%2525253D%252525252FAccount%252525252FLogin%252525253FReturnUrl%252525253D%25252525252FAccount%25252525252FLogin%25252525253FReturnUrl%25252525253D%2525252525252FAccount%2525252525252FLogin%2525252525253FReturnUrl%2525252525253D%252525252525252FAccount%252525252525252FLogin%252525252525253FReturnUrl%252525252525253D%25252525252525252FAccount%25252525252525252FLogin%25252525252525253FReturnUrl%25252525252525253D%2525252525252525252FAccount%2525252525252525252FLogin%2525252525252525253FReturnUrl%2525252525252525253D%252525252525252525252FAccount%252525252525252525252FLogin%252525252525252525253FReturnUrl%252525252525252525253D%25252525252525252525252FAccount%25252525252525252525252FLogin%25252525252525252525253FReturnUrl%25252525252525252525253D%2525252525252525252525252FAccount%2525252525252525252525252FLogin%2525252525252525252525253FReturnUrl%2525252525252525252525253D%252525252525252525252525252FAccount%252525252525252525252525252FLogin%252525252525252525252525253FReturnUrl%252525252525252525252525253D%25252525252525252525252525252FAccount%25252525252525252525252525252FLogin%25252525252525252525252525253FReturnUrl%25252525252525252525252525253D%2525252525252525252525252525252FAccount%2525252525252525252525252525252FLogin%2525252525252525252525252525253FReturnUrl%2525252525252525252525252525253D%252525252525252525252525252525252FAccount%252525252525252525252525252525252FLogin%252525252525252525252525252525253FReturnUrl%252525252525252525252525252525253D%25252525252525252525252525252525252FAccount%25252525252525252525252525252525252FLogin%25252525252525252525252525252525253FReturnUrl%25252525252525252525252525252525253D%2525252525252525252525252525252525252FAccount%2525252525252525252525252525252525252FLogin%2525252525252525252525252525252525253FReturnUrl%2525252525252525252525252525252525253D%252525252525252525252525252525252525252F
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Oh, that's good to know, thank you for clarifying. Sorry that i forgot to attach the screen capture. Here it is. What do I put in for the Mask field(2nd text field)?
Thank you.
IP-Ranges.jpg
Thank you.
IP-Ranges.jpg
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I get a list of IP ranges which comes as an IP address and ends in '/23' or /24 or 21...
I think I'm supposed to take that ending number and calculate a mask or subnet? How to do that? Thank you.
I think I'm supposed to take that ending number and calculate a mask or subnet? How to do that? Thank you.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
This is awesome! Thank you David for all your help and your patience.
ASKER
Question, the image you posted is not what I see when I try to setup IP range in IIS 7. I'm attaching the screen capture image.
Is there a difference between internal ip ranges and external ip ranges? I got one of the IP range as 128.125.xx.0/24 and I wonder if this is internal ip range that won't work here. This is given by a external partner user as one of their IP range. I thought all ip strating with 128 is only for internal usage.
Also, with that IP range how to enter the 2 fields shown in the attached screen captured for "IP Range" and "Mask or Prefix"?
Thank you.