Windows Security

  1. Go to Server Manager > Role section and open Web Server (IIS).

    Add the security roles Windows Authentication and URL Authentication.

  2. In the IIS Manager, locate GraphicalLotTracker.
  3. From the IIS Section, double click Authentication to open the Authentication configuration screen. Disable Anonymous Authentication and enable Windows Authentication.
  4. From the ASP.NET section, select .NET Authorization Rules and delete Allow All Users option.

    Click Allow Rule for authorized users or groups of users and add a new rule for user options.

    Note:  In some IIS version, the Allow All Users option is locked and cannot be deleted. In this case add a corresponding Deny rule before this setting. Because the rules are processed in sequence, the Deny rule will override the Allow All Users option.