Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

web.config for authorization

Status
Not open for further replies.
wallaceoc80

wallaceoc80

Programmer
Jul 7, 2004
182
GB
I have a web application and I want only a members of a certain group on a company intranet to have access to the web app.

In my web.config file I have authentication set to "Windows". In the authorization section I have it set to this:

Code: 
<authorization>
    <allow users="group\subgroup" /> <!-- Allow all users in this group -->
</authorization>

However, it seems to let everybody on the network have access to the site even if they are not members of the group. Any ideas why?

Could it be something to do with me having:

<identity impersonate="true" />

in the web.config file aswell?

Thanks,

Wallace
 
Sort by date Sort by votes
set IIS directory security to Integrated Windows and uncheck anonymous
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

michael12061206
  • Locked
  • Question
free javascript library for airliner diagrams
Replies
1
Views
574
xwb
xwb
G12Consult
  • Locked
  • Question
Different landing pages for different roles
Replies
0
Views
611
G12Consult
G12Consult
Carlvic
  • Locked
  • Question
Things need for ASP.Net
Replies
5
Views
238
Carlvic
Carlvic
KnowItAllmost
  • Locked
  • Question
PCI Compliance for ASP.NET in Azure Unattainable
Replies
0
Views
170
KnowItAllmost
KnowItAllmost
ahm1985
  • Locked
  • Question
Selected District not retrieved for employee in edit view get
Replies
0
Views
81
ahm1985
ahm1985

Part and Inventory Search

Sponsor

Back
Top