Jason,
If you set the authentication mode to Windows, then any domain in the
network should have access to the site. The reason for this is that the
domain can be added before the username and then the user can log in.
By default, all pages in your site will be viewable by anyone connecting
to it. What you want to do is modify the contents of the web.config file,
and modify <authorization> tag so that you limit only the users/groups that
you want to your application.
If this doesn't meet your needs, you can always implement the
IAuthenticationModule interface and register it (by modifying the web.config
file) so that you handle the authentication on your own (you can then use
Windows authentication, but fail the authentication on those you don't want
accessing your site. This bends the definition of authentication and
authorization somewhat, though).
Hope this helps.
--
- Nicholas Paldino [.NET/C# MVP]
-
mv*@spam.guard.caspershouse.com
"Jason" <c_*******@mighty.co.za> wrote in message
news:Oo**************@TK2MSFTNGP11.phx.gbl...
Hi
I was thinking about administering a web application written in ASP.NET
(C#). when the authentication mode is set to "Windows", do all users
within that particular domain have access? how do you decide who has access?
which domain has access?
eg. if the web server exists in the domain "GJDOM", then will all users in
this domain have access?
And if i were to block access to user "GJDOM\frank" how would i do that?
The other side is; if i wanted to give access to "GJDOM2\anotherfrank" how
would i do that?
adding the <allow> and <deny> nodes could prove to be a bit tedious.
Thanks
Jason