Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.
The service is hosted on IIS 6, where Windows authentication is enabled and anonymous - disabled. the above worked fine for me but now i want to limit access to only a single uers. i tried the following:
<system.web> <authentication mode="Windows" /> <authorization> <deny users="?" /> </authorization> </system.web>
but that did not work - all the domain users have access, not just user1.
<system.web> <authentication mode="Windows" /> <authorization> <allow users="DOMAIN\user1" /> <deny users="*" /> </authorization> </system.web>
I also tried to utilize PrincipalPermission attribute to limit access to a method:
<authorization> <allow users="DOMAIN\Group1"/> <deny users="DOMAIN\Domain Users"/> </authorization>
[PrincipalPermission(SecurityAction.Demand, Role = "Group1")]
Join the community of 500,000 technology professionals and ask your questions.