ultraman
Centurion
Hi ! I just red the thread started by niall29 on intranet site authorization. Pretty interesting, but I have a different issue with authorization. I need to limit access only to specific pages of my intranet site.
What I did is change the file properties (in IIS admin) so that the authentification method is now "Basic authentification" instead of anonymous access. The problem is that once an authorised user is logged on, the server assumes it's always the same user for the present session and it can navigate to every page allowed for this user.
I'm looking for a way to force the server to ask for identity every time a user request the page. Is it possible ?
What I did is change the file properties (in IIS admin) so that the authentification method is now "Basic authentification" instead of anonymous access. The problem is that once an authorised user is logged on, the server assumes it's always the same user for the present session and it can navigate to every page allowed for this user.
I'm looking for a way to force the server to ask for identity every time a user request the page. Is it possible ?