Web.Config & URL Authorization

If you are making the change to IIS 7 and you use your web.config file to control access there are a couple things you need to know.

This is known as URL Authorization and has changed a little from the older versions of IIS.  In the past we could just make sure the site was set to integrated authentication and then set our web.config authentication mode with authroization allow/deny settings and be happy.

I have been learning the hard way there is a bit of a change for those using IIS7 or better.  To explain it best I will simply use a couple links to the information I have found.

Security Authorization

ASP.NET Authorization

Advertisements

About SheldonS

Web developer for over 15 years mainly with Microsoft technologies from classic ASP to .NET 4. Husband, father, and aspiring amateur photographer.

Posted on February 15, 2011, in .NET, Bits, Learning, Security and tagged , . Bookmark the permalink. Leave a comment.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: