Re: IIS authentication with Active Directory

By default, the only thing you need to do is edit the NTFS permissions of the files you want to protect. Edit the security of the files/folders, and remove the "Anonymous web user" or "Web applications" groups, and the IUSR/IWAM accounts if they have rights. Basically, remove everything except administrators/system. Then, individually add the users/groups from Active Directory that you want to have rights to these web pages.

Comment on Re: IIS authentication with Active Directory

Replies are listed 'Best First'.
Re: Re: IIS authentication with Active Directory by qadwjoh (Scribe) on Mar 11, 2003 at 10:58 UTC
Hi, Thanks for the help, but I tried this and am still unable to produce a dialogue asking me for my Active Directory username, password and domain. What setting(s) should I have in the IIS Manager control panel? I want to be able to allow anyone who can be authenticated through my company's Active Directory to have access, not just certain groups or users. thanks, Andrew	[reply]
Re: Re: Re: IIS authentication with Active Directory by meetraz (Hermit) on Mar 11, 2003 at 17:10 UTC
In IIS, open up the properties window for the directory you want to protect. Click "Directory Security" then under authentication control, click "Edit". Make sure "Anonymous" and "Basic" are unchecked, and that "Integrated Windows" is checked. To allow all AD users to connect, you still have to remove the anonymous web users from the directory. Then, add your Domain Users group with Read permissions.	[reply]
Re: Re: Re: Re: IIS authentication with Active Directory by qadwjoh (Scribe) on Mar 19, 2003 at 16:42 UTC
How do I do this last bit - giving everyone in the entire active directory access via their username and password? Andrew	[reply]