[英]Allow all users from active directory access website on IIS using windows authentication
I have an asp.net website hosted on IIS 8.5 which uses windows authentication to login. 我有一个托管在IIS 8.5上的asp.net网站,该网站使用Windows身份验证进行登录。
I have changed the authentication to windows as shown below: Windows authentication enabled 我将身份验证更改为Windows,如下所示: 启用Windows身份验证
I have also made the necessary changes in web.config file to allow all users from my organization access the website. 我还对web.config文件进行了必要的更改,以允许组织中的所有用户访问该网站。
<authentication mode="Windows" />
<authorization>
<allow users="*" />
<deny users="?" />
</authorization>
The website works, however for some reason, only the users who's windows account has access to the server on which IIS is hosted can access the website. 该网站可以正常运行,但是由于某些原因,只有Windows帐户的用户有权访问承载IIS的服务器才能访问该网站。
The website has to be accessed by everyone in my organization. 该组织中的每个人都必须访问该网站。 I think there should be some setting where I have to add the AD domain or some other issue which I am not able to find.
我认为应该在某些地方添加AD域,或者找不到其他问题。
Please suggest, Thanks. 请提出建议,谢谢。
I had the same issue and just resolved it by changing the security configuration of the root folder of the website (when logged in the web server, right-click on the root folder eg wwwroot, select properties, security tab, then check the groups who has read permission). 我遇到了同样的问题,只是通过更改网站的根文件夹的安全性配置(在登录Web服务器时,右键单击根文件夹(例如wwwroot),选择属性,安全性选项卡,然后检查谁具有读取权限)。 Since in your case RDP users are allowed to access, in that list you probably already have an element like "hostname\\Administrators" or "hostname\\Remote Desktop Users".
由于在您的情况下,允许RDP用户访问,因此在该列表中,您可能已经有一个元素,例如“ hostname \\ Administrators”或“ hostname \\ Remote Desktop Users”。 In my case it was enough to add the "hostname\\Users" record to the list and giving it read, read & execute and list folder content permissions.
在我的情况下,将“主机名\\用户”记录添加到列表中并为其授予读取,读取和执行以及列出文件夹内容权限就足够了。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.