Shulou(Shulou.com)06/03 Report--

The IIS website allows all users to connect by default. If the security requirements of the site are high and the site is only open to specific users, users need to be authenticated. The main methods of authentication are: anonymous authentication, basic authentication, summary authentication, Windows authentication. Only how to configure basic authentication is described here.

First, add authentication module.

1. Open Server Manager and click add role Services.

two。 Check the three authentication methods to be installed in Security, which I have already installed.

Then follow the instructions of the operation wizard to complete it.

Turn off anonymous authentication and enable basic authentication.

The priority of the four authentication methods is: anonymous user-Windows authentication-digest authentication-basic authentication.

That is, if both anonymous authentication and basic authentication are turned on, the client will give priority to anonymous authentication, and basic authentication will be invalid. Therefore, if you want users to authenticate before they can access the site, you must first disable anonymous identity access, and then set the authentication method. If you do not disable anonymous access, it will not take effect even if the authentication method is set.

1. Open the IIS Information Services Manager, click the site where we want to set up authentication, and double-click to open Authentication.

two。 Disable Anonymous Authentication and enable basic Authentication.

In this way, the client must enter a user name and password when visiting the website.

Third, create local users for accessing web sites.

1. Open the computer Management control panel and create a new local user named "zhangsan".

two。 Because this user is a local user, you can use this user to log in to the server, or you can log in to the server through a remote desktop connection. For server security reasons, disable local login and remote Desktop Services login permissions for zhangsan users.

Fourth, client verification.

At this point, you must authenticate when you visit the website. Log in to the website using zhangsan.

When the verification is successful, zhangsan users can only be used to log in to the website, not through the local or remote desktop to log on to the server, which ensures the security of both the web site and the server.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.