M
MCM
I have a web application that is partially public and partially intranet. I
need help configuring the security.
All the public urls are located in the root directory. The intranet urls are
located in a subdirectory called Admin. In IIS, I have 2 bindings configured
- one with a public DNS name and one with the internal server name so IE will
recognize the site as part of the intranet. These are the sections in my
web.config as I have them now:
<system.web>
<httpModules>
<remove name="FormsAuthentication" />
<remove name="PassportAuthentication" />
<remove name="AnonymousIdentification" />
<remove name="FileAuthorization" />
<remove name="OutputCache" />
<remove name="RoleManager" />
<remove name="Profile" />
<remove name="ServiceModel" />
<remove name="ErrorHandlerModule" />
<add name="ScriptModule"
type="System.Web.Handlers.ScriptModule,
System.Web.Extensions, Version=3.5.0.0, Culture=neutral,
PublicKeyToken=31BF3856AD364E35" />
</httpModules>
<authentication mode="Windows" />
</system.web>
<location path="Admin">
<system.web>
<authorization>
<allow roles="DOMAIN\Administrators" />
<deny users="*" />
</authorization>
</system.web>
</location>
The public portion of the application loads fine. The intranet portion is
giving me access errors. I'm sure I have it configured wrong.
need help configuring the security.
All the public urls are located in the root directory. The intranet urls are
located in a subdirectory called Admin. In IIS, I have 2 bindings configured
- one with a public DNS name and one with the internal server name so IE will
recognize the site as part of the intranet. These are the sections in my
web.config as I have them now:
<system.web>
<httpModules>
<remove name="FormsAuthentication" />
<remove name="PassportAuthentication" />
<remove name="AnonymousIdentification" />
<remove name="FileAuthorization" />
<remove name="OutputCache" />
<remove name="RoleManager" />
<remove name="Profile" />
<remove name="ServiceModel" />
<remove name="ErrorHandlerModule" />
<add name="ScriptModule"
type="System.Web.Handlers.ScriptModule,
System.Web.Extensions, Version=3.5.0.0, Culture=neutral,
PublicKeyToken=31BF3856AD364E35" />
</httpModules>
<authentication mode="Windows" />
</system.web>
<location path="Admin">
<system.web>
<authorization>
<allow roles="DOMAIN\Administrators" />
<deny users="*" />
</authorization>
</system.web>
</location>
The public portion of the application loads fine. The intranet portion is
giving me access errors. I'm sure I have it configured wrong.