I'm not getting much help from the security group so I'm goign to post it here.
Basically, I like to use Integrated Windows authentication so that I can authenticate all users who are at my company to access my web application in the browser. Each user resides on different domains and some are on the same.
So in order to authenticate them, the first thing I would do is to add them to my web root's security tab? I assume this is the virtual directory folder of which the web application (default.aspx, etc.) runs on the Windows 2003 web server? So I give each user a read security permission to access the folder? (which would mean that they can then access the web application?)
Is my understanding of this correct? Therefore, If i don't add users to the security tab of the virtual folder, then other users will be rejected by the browser?
Next, assuming I want them to log on as a Network Service user, and not impersonate any other user or impersonate as themselves such as LA\Bob (domain\user) and instead just be NT Authority\Network Service, I would set impersonation to false and I would also set anonymous access in IIS to false.
I want to set up the fastest/easiest way to add users/remove users to access my application and be able to authenticate whether or not they can get on. Is this the right way
View Complete Post