This a general question...so here it goes. I have an IIS web server that I use for a corporate intranet. On another server I have Active Directory for all employees in the company. I would like to secure certain sections of the intranet (running on IIS) using basic or client authentication. How (in general) would I use Active Directory and IIS together to make this happen?? Thank you.
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Using IIS with Active Directory (General Question)
- Thread starter carmo
- Start date
First off you cannot secure a server using just basic authentication. Use NTLM, just tell IIS to use NTLM on the website, virtual directories or even files. You will also want to use the accounts domain as IIS default domain to try and authenticate against.
Hi, hmmm, well actually you can secure it even when you use basic authentication. You can issue a certificate to the relevant IIS subdirectories/subtrees and then secure these directories to require authentication.
Although basic authentication is plain text, it's ok if you use certificates because then your data (and thus even the authentication part in this issue) is encrypted by the certificate.
Hth,
Beboen
Although basic authentication is plain text, it's ok if you use certificates because then your data (and thus even the authentication part in this issue) is encrypted by the certificate.
Hth,
Beboen
- Status
Similar threads
- Locked
- Question
- Locked
- Question