IIS Server Security - anonymous vs windows authentication

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > June 2006 > anonymous vs windows authentication





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author anonymous vs windows authentication
John A Grandy

2006-06-12, 1:24 pm

The following makes no sense to me ... what am I misunderstanding ?

----------------------------------------------------------------------

web.config

<configuration>
<system.web>
<authentication mode="Windows"></authentication>

IIS Web Site properties - check "Anonymous access" , check "Integrated
Windows authentication"

perform iisreset

http://localhost successful

----------------------------------------------------------------------

web.config

<configuration>
<system.web>
<authentication mode="None"></authentication>
<authorization>
<allow users="*"/>
</authorization>

IIS Web Site properties - uncheck "Anonymous access" , check "Integrated
Windows authentication"

perform iisreset

http://localhost give error :

"Security permissions are misconfigured on this machine. Turn off anonymouse
access, turn on NTLM, and protect the directory with permissions to restrict
access to authorized people only."

----------------------------------------------------------------------



Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com