asked on
IIS Authorization For Roles And Users
Greetings:
With regard to adding authorization via IIS 7+ I can add an Allow rule via IIS Manager which results in updating the web.config as follows:
My web application, written in Visual Basic ASP.NET, uses forms based authentication and the <location> tag in web.config to govern access to most of the website. However, this application also contains classic ASP scripts which are not governed by ASP.NET since classic ASP is not managed code. It is for this reason I surmised using IIS authentication and authorization.
But I don't know where the role and user names are defined to which IIS authorization references.
Any assistance would be most appreciated.
Much thanks,
David Bach
With regard to adding authorization via IIS 7+ I can add an Allow rule via IIS Manager which results in updating the web.config as follows:
<configuration>
<system.webServer>
<security>
<authentication>
<windowsAuthentication enabled="true" />
</authentication>
<authorization>
<add accessType="Allow" roles="Admin" />
</authorization>
</security>
</system.webServer>
</configuration>
My web application, written in Visual Basic ASP.NET, uses forms based authentication and the <location> tag in web.config to govern access to most of the website. However, this application also contains classic ASP scripts which are not governed by ASP.NET since classic ASP is not managed code. It is for this reason I surmised using IIS authentication and authorization.
But I don't know where the role and user names are defined to which IIS authorization references.
Any assistance would be most appreciated.
Much thanks,
David Bach
Microsoft IIS Web ServerWeb DevelopmentASP.NET
Last Comment
David Bach