Re: Website access through a DOMAIN ONLY

---

• From: RajivI <rajiv_p_iyer@xxxxxxxxxxx>
• Date: Mon, 5 Mar 2007 02:49:13 -0800

---

thanks a LOT.... It Works..... WOW We are learning new thing everyday.
Interesting.
--
regards,
Rajiv.I
MCP,MCSA


"Roger Abell [MVP]" wrote:

After you get the content correctly permissioned at the filesystem
level to allow your Domain Users, then you will only perhaps have
attained what you indicate you want.
i.e.

I would like to implement is that, this website should
allow access to users only from xyz.com.

You will instead have effected that only Windows accounts
from the xyz.com Windows domain are allowed access when
they do so from a machine joined to and completely DNS
registered as joined to the xyz.com domain.
Thosse same Windows users cannot access from non-joined
machines. That is something you did not specify as desired.


"RajivI" <rajiv_p_iyer@xxxxxxxxxxx> wrote in message
news:423DDD91-8EC1-4730-8CD0-8FE4E40C3B40@xxxxxxxxxxxxxxxx

I have a domain xyz.com and a member server running Windows 2000 Server. I
have created an application which I would like to host it on IIS. The
first
level of security that I would like to implement is that, this website
should
allow access to users only from xyz.com. Hence in the Directory Security
Tab
of the website in IIS, I check the Integrated Windows Authentication and
enable the denied Access except to xyz.com domain. In the web.config file
of
the application the authentication mode is set to windows. Deny Permission
to
anonymous users is also enabled.

I thought by doing this should work. But it didn't. I found out
that I also need to enable Reverse DNS Lookup for IIS inorder to enable
IIS
to resolve IP into Domain Name and check the criteria of xyz.com. Hence I
ran
a script as " adsutil set EnableReverseDNS TRUE ". But still no result, It
just gives me the page as "You are not authorized to view this page".



--
regards,
Rajiv.I
MCP,MCSA

.

---

• References:
  • Re: Website access through a DOMAIN ONLY
    • From: Roger Abell [MVP]

• Prev by Date: Re: IIS 6.0 Url Authorization - specific URL, non AD authentication.
• Next by Date: Re: Triggering https to http alerts
• Previous by thread: Re: Website access through a DOMAIN ONLY
• Next by thread: Re: IIS and SSL flaw...
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Website access through a DOMAIN ONLY ... You will instead have effected that only Windows accounts ... have created an application which I would like to host it on IIS. ... a script as " adsutil set EnableReverseDNS TRUE ". ... (microsoft.public.inetserver.iis.security) Re: IIS Fails Intermittently ... Regards, ... Microsoft MVP [Windows] ... "Barry McConomy" wrote: ... | I have a Windows 2000 server with IIS to host about 50 WEB sites. ... (microsoft.public.win2000.general) Windows 2003. IIS 6.0. ActiveX component cant create object: CDONTS.NewMail ... Windows 2003. ... IIS 6.0. ... ActiveX component can't create object: ... With best regards, ... (microsoft.public.inetserver.asp.db) RE: IIS version ... SharePoint Portal Server 2003 can only be used in conjunction with Windows ... Server 2003 (which uses IIS 6.0). ... Regards ... (microsoft.public.sharepoint.portalserver) Re: IIS 5.0 authentication ... How IIS Authenticates Browser Clients ... Configuring IIS in Windows ... Regards, ... Paul Lynch ... (microsoft.public.inetserver.iis.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)