is it possible to add a bunch of users to group and only allow group to
access the web page or do I need to add each user to the web.config file?

Or is there another way to do this?
I just took over a project and most of the web sites have users defined in
the web.config file that can access the site. Now users come and go so this
config file is always being modified. Could I just add the users to a group
and only allow that group, or would a Active Directory /LDAP path work better?

On May 24, 9:52 pm, Tom <T...@discussions.microsoft.com> wrote:
> is it possible to add a bunch of users to group and only allow group to
> access the web page or do I need to add each user to the web.config file?
>

yes, sure

Specify the "roles" property when configuring <deny> and <allow>
elements, as shown here:

<authorization>
<allow roles="DomainName\WindowsGroup" />
<deny users="DomainName\UserName" />
</authorization>

http://msdn2.microsoft.com/en-us/library/acsd09b0.aspx
http://msdn2.microsoft.com/en-us/library/ms998358.aspx

when I do that I'm prompted for an ID and pwd. I don't want to the prompt to
pop up for each user.

"Alexey Smirnov" wrote:

> On May 24, 9:52 pm, Tom <T...@discussions.microsoft.com> wrote:
> > is it possible to add a bunch of users to group and only allow group to
> > access the web page or do I need to add each user to the web.config file?
> >
>
> yes, sure
>
> Specify the "roles" property when configuring <deny> and <allow>
> elements, as shown here:
>
> <authorization>
> <allow roles="DomainName\WindowsGroup" />
> <deny users="DomainName\UserName" />
> </authorization>
>
> http://msdn2.microsoft.com/en-us/library/acsd09b0.aspx
> http://msdn2.microsoft.com/en-us/library/ms998358.aspx
>
>

On May 25, 1:04 pm, Tom <T...@discussions.microsoft.com> wrote:
> when I do that I'm prompted for an ID and pwd. I don't want to the prompt to
> pop up for each user.

Something is wrong. When you typed the login and password, does it
work?

no, I enter it in 3 times then it takes me to an error page: 'you are unable
to view this page'.

I even have a web site were I have:
<identity impersonate="true" userName="myDomain\testuser" password="1235"/>
in the web.config file and Im prompted for a username and pwd and even when
I type in the username and pwd i get the samething. 'you are able to view
this page'

I thought I had a typo so I tried just a username and samething.
I dont' want the username and pwd prompt at all.


"Alexey Smirnov" wrote:

> On May 25, 1:04 pm, Tom <T...@discussions.microsoft.com> wrote:
> > when I do that I'm prompted for an ID and pwd. I don't want to the prompt to
> > pop up for each user.
>
> Something is wrong. When you typed the login and password, does it
> work?
>
>
>
>

On May 25, 5:54 pm, Tom <T...@discussions.microsoft.com> wrote:
> no, I enter it in 3 times then it takes me to an error page: 'you are unable
> to view this page'.
>
> I even have a web site were I have:
> <identity impersonate="true" userName="myDomain\testuser" password="1235"/>
> in the web.config file and Im prompted for a username and pwd and even when
> I type in the username and pwd i get the samething. 'you are able to view
> this page'
>

Okay, let's try to find what's wrong there. I've just tested it on my
remote server box and that's working well without prompting me for
password.

1. Why do you set impersonation? Do you need it?

2. Which Authentication method is used in IIS? Properties -
Dir.Security - Auth.Control - Edit

3. Which Authentication mode is used in web.config?

1. Why do you set impersonation? Do you need it?
Not sure, I just came on board for the project. not sure

2. Which Authentication method is used in IIS? Properties -
Dir.Security - Auth.Control - Edit:
the only thing checked here is 'Integrated Windows Auth.

3. Which Authentication mode is used in web.config?
<authentication mode="Windows"/>
and this is set as well:
identity impersonate="true" userName="domain\username"
password="1234"/>

and every time I hit the site I'm prompted for an ID and password.

not sure if this makes a difference or not but, under IIS application pools,
I have a appPool for my web site and I have the identiy set to
'domain\username" and the 1234 password, and I'm still challenged.

any suggestions?



"Alexey Smirnov" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> On May 25, 5:54 pm, Tom <T...@discussions.microsoft.com> wrote:
>> no, I enter it in 3 times then it takes me to an error page: 'you are
>> unable
>> to view this page'.
>>
>> I even have a web site were I have:
>> <identity impersonate="true" userName="myDomain\testuser"
>> password="1235"/>
>> in the web.config file and Im prompted for a username and pwd and even
>> when
>> I type in the username and pwd i get the samething. 'you are able to view
>> this page'
>>
>
> Okay, let's try to find what's wrong there. I've just tested it on my
> remote server box and that's working well without prompting me for
> password.
>
> 1. Why do you set impersonation? Do you need it?
>
> 2. Which Authentication method is used in IIS? Properties -
> Dir.Security - Auth.Control - Edit
>
> 3. Which Authentication mode is used in web.config?
>

On May 25, 8:08 pm, "Mike" <whyamih...@gmail.com> wrote:
> 1. Why do you set impersonation? Do you need it?
> Not sure, I just came on board for the project. not sure

Okay, I guess you don't need it :-) With impersonation ASP.NET Web
application would access the file system using as the user "myDomain
\testuser". Maybe this is the reason of a login prompt. Either remove
that section, or set

<identity impersonate="false" />

More about impersonation
http://msdn2.microsoft.com/en-us/library/aa292118.aspx

Now, try to set

<authorization>
<allow users="*"/>
<authorization>

Make sure that your account has access

Set up an access rule for specific group (your user must be a member
of that group)

<authorization>
<allow roles="DOMAIN\group"/>
<deny users="*"/>
<authorization>

See what happens

still prompted for ID and Password.



"Alexey Smirnov" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> On May 25, 8:08 pm, "Mike" <whyamih...@gmail.com> wrote:
>> 1. Why do you set impersonation? Do you need it?
>> Not sure, I just came on board for the project. not sure
>
> Okay, I guess you don't need it :-) With impersonation ASP.NET Web
> application would access the file system using as the user "myDomain
> \testuser". Maybe this is the reason of a login prompt. Either remove
> that section, or set
>
> <identity impersonate="false" />
>
> More about impersonation
> http://msdn2.microsoft.com/en-us/library/aa292118.aspx
>
> Now, try to set
>
> <authorization>
> <allow users="*"/>
> <authorization>
>
> Make sure that your account has access
>
> Set up an access rule for specific group (your user must be a member
> of that group)
>
> <authorization>
> <allow roles="DOMAIN\group"/>
> <deny users="*"/>
> <authorization>
>
> See what happens
>

still prompted,
what would happen if I set ther username and password under:

IIS -->website --> properties --> directory security --> Edit

and add the username and pwd I want my site to run under as?

would that work for the impersonation or no?

"Alexey Smirnov" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)...
> On May 25, 8:08 pm, "Mike" <whyamih...@gmail.com> wrote:
>> 1. Why do you set impersonation? Do you need it?
>> Not sure, I just came on board for the project. not sure
>
> Okay, I guess you don't need it :-) With impersonation ASP.NET Web
> application would access the file system using as the user "myDomain
> \testuser". Maybe this is the reason of a login prompt. Either remove
> that section, or set
>
> <identity impersonate="false" />
>
> More about impersonation
> http://msdn2.microsoft.com/en-us/library/aa292118.aspx
>
> Now, try to set
>
> <authorization>
> <allow users="*"/>
> <authorization>
>
> Make sure that your account has access
>
> Set up an access rule for specific group (your user must be a member
> of that group)
>
> <authorization>
> <allow roles="DOMAIN\group"/>
> <deny users="*"/>
> <authorization>
>
> See what happens
>