Re: Securing an IIS7 development server
You need to add in Basic and/or Integrated Windows Auth as modules for IIS 7 in Windows Features (Vista/Win7) or Server Manager (WS2008). Ok, Anonymous authentication has been disabled. However there is no Basic or Windows authentication in the Authentication window. Instead there is: Anonymous ASP.net Impersonation Forms authentication Forms authentication is expecting a login.aspx file that is not anywhere on the server. Please let me know what I'm missing here. Thanks! Right click on the website in IIS, select properties and click the Directory Security tab. Click Edit under Authentication and access control. In IIS7 it's the same principle, but in a slightly different place. Select the site (or server) to get the options in the main window. Open the Authentication icon. Select Anonymous and disable it, then enable either Basic or Windows authentication depending on how you plan to log in. -Justin Scott ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334677 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: Securing an IIS7 development server
Right click on the website in IIS, select properties and click the Directory Security tab. Click Edit under Authentication and access control. Uncheck Enable Anonymous access. Access should then be controlled by either local user accounts on that machine or domain accounts This will walk you through that as well as setting up local accounts (if that is how you plan to allow access) http://www.hosting.com/support/dedicated/IIS/passwordprotect/ You may find a better article, it was just the first one that came up on Google for password protect IIS website .:.:.:.:.:.:.:.:.:.:.:.:.:. Bobby Hartsfield http://acoderslife.com -Original Message- From: Richard Steele [mailto:r...@photoeye.com] Sent: Wednesday, June 16, 2010 9:40 PM To: cf-talk Subject: Securing an IIS7 development server I'd like to password protect the various websites we are developing. Can anyone point me to a good tutorial as to how to do this? Many thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334611 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
RE: Securing an IIS7 development server
Right click on the website in IIS, select properties and click the Directory Security tab. Click Edit under Authentication and access control. In IIS7 it's the same principle, but in a slightly different place. Select the site (or server) to get the options in the main window. Open the Authentication icon. Select Anonymous and disable it, then enable either Basic or Windows authentication depending on how you plan to log in. -Justin Scott ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334613 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Securing an IIS7 development server
Here is a guide to securing ColdFusion 9 http://tinyurl.com/2bch7cn http://www.adobe.com/products/coldfusion/whitepapers/pdf/91025512_cf9_lockdownguide_wp_ue.pdf ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334619 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Re: Securing an IIS7 development server
Ok, Anonymous authentication has been disabled. However there is no Basic or Windows authentication in the Authentication window. Instead there is: Anonymous ASP.net Impersonation Forms authentication Forms authentication is expecting a login.aspx file that is not anywhere on the server. Please let me know what I'm missing here. Thanks! Right click on the website in IIS, select properties and click the Directory Security tab. Click Edit under Authentication and access control. In IIS7 it's the same principle, but in a slightly different place. Select the site (or server) to get the options in the main window. Open the Authentication icon. Select Anonymous and disable it, then enable either Basic or Windows authentication depending on how you plan to log in. -Justin Scott ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334623 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
Securing an IIS7 development server
I'd like to password protect the various websites we are developing. Can anyone point me to a good tutorial as to how to do this? Many thanks. ~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology-Michael-Dinowitz/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:334609 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm