how to create the username/password authorization dialog?

Re: how to create the username/password authorization dialog?

Do you mean to go to "Directory Security" Tab, and click "Edit" button in
Anonymous access and authentication control? And then check "Basic
authentication. " ?? How about the ASP source code? How to invoke the
username/password dialog?

Thanks,
John

"Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...[color=blue]
> Easiest way is to turn on Windows Authentication in IIS
>
>
> --
> ----------------------------------------------------------
> Curt Christianson (Software_AT_Da rkfalz.Com)
> Owner/Lead Designer, DF-Software
> http://www.Darkfalz.com
> ---------------------------------------------------------
> ..Offering free scripts & code snippits for everyone...
> ---------------------------------------------------------
>
>
> "John Davis" <jrefactor@hotm ail.com> wrote in message
> news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...[color=green]
> > Anyone knows how to create the username/password authorization dialog in
> > ASP?
> >
> > Thanks,
> > John
> >
> >[/color]
>
>[/color]

Re: how to create the username/password authorization dialog?

yes..... Turn off Anonymous.
The popup login box is built-in and automatic

--
----------------------------------------------------------
Curt Christianson (Software_AT_Da rkfalz.Com)
Owner/Lead Designer, DF-Software

---------------------------------------------------------
...Offering free scripts & code snippits for everyone...
---------------------------------------------------------


"John Davis" <jrefactor@hotm ail.com> wrote in message
news:OWeb6SDZDH A.2520@TK2MSFTN GP09.phx.gbl...[color=blue]
> Do you mean to go to "Directory Security" Tab, and click "Edit" button in
> Anonymous access and authentication control? And then check "Basic
> authentication. " ?? How about the ASP source code? How to invoke the
> username/password dialog?
>
> Thanks,
> John
>
> "Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
> news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...[color=green]
> > Easiest way is to turn on Windows Authentication in IIS
> >
> >
> > --
> > ----------------------------------------------------------
> > Curt Christianson (Software_AT_Da rkfalz.Com)
> > Owner/Lead Designer, DF-Software
> > http://www.Darkfalz.com
> > ---------------------------------------------------------
> > ..Offering free scripts & code snippits for everyone...
> > ---------------------------------------------------------
> >
> >
> > "John Davis" <jrefactor@hotm ail.com> wrote in message
> > news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...[color=darkred]
> > > Anyone knows how to create the username/password authorization dialog[/color][/color][/color]
in[color=blue][color=green][color=darkred]
> > > ASP?
> > >
> > > Thanks,
> > > John
> > >
> > >[/color]
> >
> >[/color]
>
>[/color]

Re: how to create the username/password authorization dialog?

John Davis wrote:[color=blue]
> "Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
> news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...[color=green]
>> "John Davis" <jrefactor@hotm ail.com> wrote in message
>> news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...[color=darkred]
>>> Anyone knows how to create the username/password authorization
>>> dialog in ASP?[/color]
>> Easiest way is to turn on Windows Authentication in IIS
>>[/color]
> Do you mean to go to "Directory Security" Tab, and click "Edit"
> button in Anonymous access and authentication control? And then check
> "Basic authentication. " ??[/color]

That would do it.
[color=blue]
> How about the ASP source code? How to
> invoke the username/password dialog?[/color]

Using Windows or Basic authentication there is no need for asp to do
anything. IIS takes care of ensuring authentication. Useful if your
visitors are mapped to user names on the server.

--
William Tasso - http://WilliamTasso.com

Re: how to create the username/password authorization dialog?

Thanks, but how to set the username and password. I did that in Anonymous
User Account, but it seems not working. Also, what is the checkbox "Allow
IIS to control password" means??

Please advice, thanks!
john

"William Tasso" <ngx@tbdata.com > wrote in message
news:#sL8quDZDH A.1744@TK2MSFTN GP12.phx.gbl...[color=blue]
> John Davis wrote:[color=green]
> > "Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
> > news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...[color=darkred]
> >> "John Davis" <jrefactor@hotm ail.com> wrote in message
> >> news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...
> >>> Anyone knows how to create the username/password authorization
> >>> dialog in ASP?
> >> Easiest way is to turn on Windows Authentication in IIS
> >>[/color]
> > Do you mean to go to "Directory Security" Tab, and click "Edit"
> > button in Anonymous access and authentication control? And then check
> > "Basic authentication. " ??[/color]
>
> That would do it.
>[color=green]
> > How about the ASP source code? How to
> > invoke the username/password dialog?[/color]
>
> Using Windows or Basic authentication there is no need for asp to do
> anything. IIS takes care of ensuring authentication. Useful if your
> visitors are mapped to user names on the server.
>
> --
> William Tasso - http://WilliamTasso.com
>
>[/color]

Re: how to create the username/password authorization dialog?


"William Tasso" <ngx@tbdata.com > wrote in message
news:%23sL8quDZ DHA.1744@TK2MSF TNGP12.phx.gbl. ..[color=blue]
> John Davis wrote:[color=green]
> > "Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
> > news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...[color=darkred]
> >> "John Davis" <jrefactor@hotm ail.com> wrote in message
> >> news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...
> >>> Anyone knows how to create the username/password authorization
> >>> dialog in ASP?
> >> Easiest way is to turn on Windows Authentication in IIS
> >>[/color]
> > Do you mean to go to "Directory Security" Tab, and click "Edit"
> > button in Anonymous access and authentication control? And then[/color][/color]
check[color=blue][color=green]
> > "Basic authentication. " ??[/color]
>
> That would do it.
>[color=green]
> > How about the ASP source code? How to
> > invoke the username/password dialog?[/color]
>
> Using Windows or Basic authentication there is no need for asp to do
> anything. IIS takes care of ensuring authentication. Useful if[/color]
your[color=blue]
> visitors are mapped to user names on the server.[/color]

But I find that this doesn't work with many browsers. Opera 7 just
reports an unknow authentication error (or something similar). IE on
my old Mac would prompt for user information, but it could not
authenticate any user I entered. It all works fine on my XP machine
with IE6 of course.

Re: how to create the username/password authorization dialog?

Phrederik wrote:[color=blue]
> "William Tasso" <ngx@tbdata.com > wrote in message
> news:%23sL8quDZ DHA.1744@TK2MSF TNGP12.phx.gbl. ..[color=green]
>> John Davis wrote:[color=darkred]
>>> "Curt_C [MVP]" <software_AT_da rkfalz.com> wrote in message
>>> news:O6PLT08YDH A.2384@tk2msftn gp13.phx.gbl...
>>>> "John Davis" <jrefactor@hotm ail.com> wrote in message
>>>> news:uIQVKa8YDH A.2284@TK2MSFTN GP10.phx.gbl...
>>>>> Anyone knows how to create the username/password authorization
>>>>> dialog in ASP?
>>>> Easiest way is to turn on Windows Authentication in IIS
>>>>
>>> Do you mean to go to "Directory Security" Tab, and click "Edit"
>>> button in Anonymous access and authentication control? And then
>>> check "Basic authentication. " ??[/color]
>>
>> That would do it.
>>[color=darkred]
>>> How about the ASP source code? How to
>>> invoke the username/password dialog?[/color]
>>
>> Using Windows or Basic authentication there is no need for asp to do
>> anything. IIS takes care of ensuring authentication. Useful if your
>> visitors are mapped to user names on the server.[/color]
>
> But I find that this doesn't work with many browsers. Opera 7 just
> reports an unknow authentication error (or something similar). IE on
> my old Mac would prompt for user information, but it could not
> authenticate any user I entered. It all works fine on my XP machine
> with IE6 of course.[/color]

Yep - it isn't universal and furthermore is hopeless for an internet site
(as opposed to intra/extra net) unless you really are going to allocate a
windows account for all your visitors. Better to use an asp (aka forms
based) solution.

--
William Tasso - http://WilliamTasso.com

Re: how to create the username/password authorization dialog?


"John Davis" <jrefactor@hotm ail.com> wrote in message
news:%23nXhzcHZ DHA.1620@TK2MSF TNGP12.phx.gbl. ..[color=blue]
> Thanks, but how to set the username and password. I did that in Anonymous
> User Account, but it seems not working. Also, what is the checkbox "Allow
> IIS to control password" means??
>[/color]

On your desktop, go to "My Computer",
right-click and select "Manage",
then "Local users and groups",
then "Users", right-click, add new user.

create the username/password authentication dialog problem

I want to add security in ASP application.
When the user go to http://localhost/myproject/index.asp, I want it will pop
up an username/password authentication dialog box.

Here's the steps I did, but still not working.
1. In computer management, add an user "admin" that should have permission
to the page
2. In IIS console, right click the file index.asp, and click properties >
File Security > Edit, and click Edit button under Anonymous access, and add
user "admin" in Anonymous User Account window.
3. Uncheck Anonymous access check box
4. Click OK button

Then it should provide security access to index.asp only, but not other
files. But still not working either way. Please advise!


Thanks,
Matt

Re: create the username/password authentication dialog problem

You need to:

a) uncheck the "Allow Anonymous Access" box
b) check the "Basic" and/or "integrated Windows Authentication" box
c) change the NTFS permissions to give your user account access
d) If you are using Internet Explorer -and- Integrated Windows
Authentication, then http://localhost is in the Intranet zone, and IE will
automatically logon for you (so you wont' see the logon dialogue box).
Instead, try http://127.0.0.1 which IE will think is in the Internet zone

Cheers
Ken


"Matt" <mattloude@hotm ail.com> wrote in message
news:%23ojEe9ZA EHA.688@tk2msft ngp13.phx.gbl.. .
: I want to add security in ASP application.
: When the user go to http://localhost/myproject/index.asp, I want it will
pop
: up an username/password authentication dialog box.
:
: Here's the steps I did, but still not working.
: 1. In computer management, add an user "admin" that should have permission
: to the page
: 2. In IIS console, right click the file index.asp, and click properties >
: File Security > Edit, and click Edit button under Anonymous access, and
add
: user "admin" in Anonymous User Account window.
: 3. Uncheck Anonymous access check box
: 4. Click OK button
:
: Then it should provide security access to index.asp only, but not other
: files. But still not working either way. Please advise!
:
:
: Thanks,
: Matt
:
:
:
:
:
:

Re: create the username/password authentication dialog problem

Thanks Ken,

it pops up the logon dialog box when I try 127.0.0.1, but how about the
domain? How to set the domain? Even I don't type anything in domain, it is
still able to go to the page? Also, what do you mean "c) change the NTFS
permissions to give your user account access." I just added the user in
Anonymous User Account window in IIS console.

Please advise. Thanks!

"Ken Schaefer" <kenREMOVE@THIS adOpenStatic.co m> wrote in message
news:#JnBdYaAEH A.2600@TK2MSFTN GP09.phx.gbl...[color=blue]
> You need to:
>
> a) uncheck the "Allow Anonymous Access" box
> b) check the "Basic" and/or "integrated Windows Authentication" box
> c) change the NTFS permissions to give your user account access
> d) If you are using Internet Explorer -and- Integrated Windows
> Authentication, then http://localhost is in the Intranet zone, and IE will
> automatically logon for you (so you wont' see the logon dialogue box).
> Instead, try http://127.0.0.1 which IE will think is in the Internet zone
>
> Cheers
> Ken
>
>
> "Matt" <mattloude@hotm ail.com> wrote in message
> news:%23ojEe9ZA EHA.688@tk2msft ngp13.phx.gbl.. .
> : I want to add security in ASP application.
> : When the user go to http://localhost/myproject/index.asp, I want it will
> pop
> : up an username/password authentication dialog box.
> :
> : Here's the steps I did, but still not working.
> : 1. In computer management, add an user "admin" that should have[/color]
permission[color=blue]
> : to the page
> : 2. In IIS console, right click the file index.asp, and click properties
>
> : File Security > Edit, and click Edit button under Anonymous access, and
> add
> : user "admin" in Anonymous User Account window.
> : 3. Uncheck Anonymous access check box
> : 4. Click OK button
> :
> : Then it should provide security access to index.asp only, but not other
> : files. But still not working either way. Please advise!
> :
> :
> : Thanks,
> : Matt
> :
> :
> :
> :
> :
> :
>
>[/color]

Re: create the username/password authentication dialog problem

"Matt" wrote: Thanks Ken,
: it pops up the logon dialog box when I try 127.0.0.1, but how about the
: domain? How to set the domain? Even I don't type anything in domain, it is
: still able to go to the page? Also, what do you mean "c) change the NTFS
: permissions to give your user account access." I just added the user in
: Anonymous User Account window in IIS console.

Matt...

Disabling the anonymous user setting in IIS requires you to use either Basic
or integrated Windows Authentication.
In the NTFS permissions settings at the file system level, on the Security
tab, add the domain user you want to have rights to login with. If
domain\user1 has rights, and domain\user2 tries to logon, they will be
denied. If you want more than one user, it is recommended to either use an
existing group or create a new one. Add the group to the NTFS permissions
so if users have to be added, deleted in the future, just add/remove them
from the group in your domain group. You will not have to revisit the NTFS
permissions or the IIS settings.

Setting the user as the anonymous user in IIS defeats the purpose of
disabling anonymous user access.

HTH...

--
Roland Hall
/* This information is distributed in the hope that it will be useful, but
without any warranty; without even the implied warranty of merchantability
or fitness for a particular purpose. */
Technet Script Center - http://www.microsoft.com/technet/scriptcenter/
WSH 5.6 Documentation - http://msdn.microsoft.com/downloads/list/webdev.asp
MSDN Library - http://msdn.microsoft.com/library/default.asp

Re: create the username/password authentication dialog problem

"Matt" <mattloude@hotm ail.com> wrote in message
news:%23ojEe9ZA EHA.688@tk2msft ngp13.phx.gbl.. .[color=blue]
> I want to add security in ASP application.
> When the user go to http://localhost/myproject/index.asp, I want it will[/color]
pop[color=blue]
> up an username/password authentication dialog box.
>
> Here's the steps I did, but still not working.
> 1. In computer management, add an user "admin" that should have permission
> to the page
> 2. In IIS console, right click the file index.asp, and click properties >
> File Security > Edit, and click Edit button under Anonymous access, and[/color]
add[color=blue]
> user "admin" in Anonymous User Account window.
> 3. Uncheck Anonymous access check box
> 4. Click OK button
>
> Then it should provide security access to index.asp only, but not other
> files. But still not working either way. Please advise![/color]

See the relevant article(s) for you OS/IIS:
IIS 5 Documentation

Microsoft Internet Information Server
Administration
Server Administration
Security
Authentication
Access Control

IIS 6 Documentation



HOW TO: Configure IIS 5.0 Web Site Authentication in Windows 2000

HOW TO: Configure User and Group Access on an Intranet in Windows 2000 or
Windows NT 4.0

HOW TO: Configure IIS Web Site Authentication in Windows Server 2003


Make sure you disable simple file sharing in XP



--
Tom Kaminski IIS MVP
http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS

Re: create the username/password authentication dialog problem

"Ken Schaefer" <kenREMOVE@THIS adOpenStatic.co m> wrote in message
news:%23JnBdYaA EHA.2600@TK2MSF TNGP09.phx.gbl. ..[color=blue]
> You need to:
>
> a) uncheck the "Allow Anonymous Access" box[/color]

FWIW, I like to say "uncheck the 'Allow Anonymous Access' box AND/OR remove
IUSR_servername from the NTFS permissions on the content."

--
Tom Kaminski IIS MVP
http://www.iistoolshed.com/ - tools, scripts, and utilities for running IIS

Re: create the username/password authentication dialog problem

If you just remove IUSR_<machinena me> NTFS permissions, and you do not check
any of the other authentication mechanisms, you will just generate a HTTP
error (since the impersonated account can not get access, and you haven't
specified a method that the server will accept for accepting credentials
from the browser). By default IWA is also checked, so usually that would
work.

That's why I laid out several steps:
a) uncheck allow anonymous
b) check one of the *other* authentication mechanisms
c) adjust NTFS permissions so that the groups that are supposed to have
access have appropraite NTFS permissions (not just "anyone"

Cheers
Ken

"Tom Kaminski [MVP]" <tomk (A@T) mvps (D.O.T) org> wrote in message
news:c27b2r$rrp 12@kcweb01.netn ews.att.com...
: "Ken Schaefer" <kenREMOVE@THIS adOpenStatic.co m> wrote in message
: news:%23JnBdYaA EHA.2600@TK2MSF TNGP09.phx.gbl. ..
: > You need to:
: >
: > a) uncheck the "Allow Anonymous Access" box
:
: FWIW, I like to say "uncheck the 'Allow Anonymous Access' box AND/OR
remove
: IUSR_servername from the NTFS permissions on the content."
:
: --
: Tom Kaminski IIS MVP
: http://www.iistoolshed.com/ - tools, scripts, and utilities for running
IIS
: http://mvp.support.microsoft.com/
: http://www.microsoft.com/windowsserv...y/centers/iis/
:
:
: