Windows Authentication - Recommended

The following procedures are for deploying Windows authentication. You must have Windows authentication checked in the Server roles established during the Configure IIS step.

TIP:

  • If you are using Windows/AD Authentication, the Logoff, Registered Users, and Register New User buttons are not available.

  • If you are using Forms Authentication, those buttons are available for use.

Change IIS Settings

In IIS Manager, configure the application pool containing your Wavepoint website to use .NET 4.0.

If the .NET version needs to be changed, click on Basic Settings in the Actions pane. Select the .NET version from the drop-down, then click OK.

Ensure Windows Authentication is Enabled by double-clicking on the Authentication button under the Wavepoint Default Web Site list. Also ensure that Forms Authentication is Disabled.

Windows Authentication

If necessary, navigate to C:\inetpub\wwwroot\Wavepoint and open Web.config in a text editor (Notepad++ or XMLSpy).

By configuring authentication using IIS Manager, some of the changes below might already be accomplished. Add the entries below only if absent from the Web.config.

  • In the <appSettings/> section of the Web.config file, add the following two lines:

    <add key="autoFormsAuthentication" value="false" />
    <add key="enableSimpleMembership" value="false" />
    
  • Then, set the authentication mode as Windows.

    <authentication mode="Windows" />
    <identity impersonate="true" />
    
  • Further, you can use the authorization section to specify the Active Directory groups that can (or cannot) access Wavepoint. See the Microsoft IIS documentation for more information about this configuration.

    The default strings shown below will allow any valid user from any Active Directory group.

    <authorization>
            <allow users="*" />
            <deny users="?" />
    </authorization>
    
QR code for this page

Was this helpful?