Windows Authentication in Web.Config
I'm hoping someone can help me...
I have an employee intranet with one folder I want to secure for admin staff only. I have tried: 1) to edit the web.config in the root and 2) create additional web.config in folder to be secured (and creating application for that folder in IIS). My problem is a little bizarre.
As long as the allow users for the admin folder is a single user, it works fine. When I add a second user or change the user to a windows group, it doesn't work. Can anyone help? Here is what I have in my web.config...
<allow users="domain\group" />
<deny users="*" />
<compilation defaultLanguage="c#" debug="true" />
<customErrors mode="RemoteOnly" />
<authentication mode="Windows" />
<allow users="*" />
And so on...