Network Engineer

amigan_99

<div>
<div class="content wysiwyg-content fr-view">
Spacely Sprockets has a .NET server running IIS. It has a main page and four URLs and it hooks into MS SQL on the back end. Main Page, Retail Sprockets, Wholesale Sprockets, Government Sprockets, Spacely Partners. Each of the sub web sites has its own user ID and password required. Mr. Spacely would like there to be two factor authentication to be able to access any other these. He's thinking perhaps just to get to the web site a user would need a user ID and password and a two factor. And then this would be kind of a two factor authentication as after you've 2FA'd to the main site you're then permitted to use UID/PW to reach any of the sub web sites. This seems out of the spirit of true 2FA which would send you a token when you accessed any of the sub web sites. But then it's not my expertise either. Is the old man's request reasonable? If yes would it be best resolved at the server? PAN firewall? Citrix Load Balancer? It seems to me like we're really talking about publishing five applications. Help! Jane stock this crazy thing!
</div>
</div>



Spacely Sprockets has a .NET server running IIS. It has a main page and four URLs and it hooks into MS SQL on the back end. Main Page, Retail Sprockets, Wholesale Sprockets, Government Sprockets, Spacely Partners. Each of the sub web sites has its own user ID and password required. Mr. Spacely would like there to be two factor authentication to be able to access any other these. He's thinking perhaps just to get to the web site a user would need a user ID and password and a two factor. And then this would be kind of a two factor authentication as after you've 2FA'd to the main site you're then permitted to use UID/PW to reach any of the sub web sites. This seems out of the spirit of true 2FA which would send you a token when you accessed any of the sub web sites. But then it's not my expertise either. Is the old man's request reasonable? If yes would it be best resolved at the server? PAN firewall? Citrix Load Balancer? It seems to me like we're really talking about publishing five applications. Help! Jane stock this crazy thing!

.NET IIS Server - two factor access options

The .NET Framework is not specific to any one programming language; rather, it includes a library of functions that allows developers to rapidly build applications. Several supported languages include C#, VB.NET, C++ or ASP.NET.

.NET Programming

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Microsoft IIS Web Server

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.