Or atleast every user I've tried, in the security section of SPS admin I've set:
domain admin - admin
my user - admin
authenticated users - reader
however no matter who logs on, they have access to manage users, create sites, you name it, administrative type stuff.
I've checked the IIS configuration and it's not set to allow anonymous access, so I went ahead and tested a local machine account as well, and it worked.
So basically my SPS server isn't enforcing it's security at all, in fact, IIS isn't even enforcing security it seems. Please help.
domain admin - admin
my user - admin
authenticated users - reader
however no matter who logs on, they have access to manage users, create sites, you name it, administrative type stuff.
I've checked the IIS configuration and it's not set to allow anonymous access, so I went ahead and tested a local machine account as well, and it worked.
So basically my SPS server isn't enforcing it's security at all, in fact, IIS isn't even enforcing security it seems. Please help.