Basic HTTP Authentication in IIS

http authentication iis web.config

There may be another way, but simply you can
- create a local user under Windows,
- add them to a local user group,
- remove anonymous access to the folder containing the web site and
- change file permissions to only allow access to members of the local user group

For the IP whitelist, there doesn't appear to be a way to override basic auth by IP address.

Its a bit of a kludge, but you could point a separate virtual site to the same directory and lock it down to nothing other than the local IP. Perhaps use host header to select the new site

Related

expect + how to identify if expect break because time out?
Nginx Retry of Requests ( Nginx - Haproxy Combination ) [duplicate]
How quickly will SQL Server release RAM when the OS signals a low memory condition?
Why is this APC installation failing so badly?
Why is IIS7 not compressing my static files?
SSL/TLS 1.2 on Apache with openssl 1.0.1
NIC disabled in AWS instance
Configuring Frame Relay using a Switch Simulation - Packet Tracer
Can't connect to SMTP server
How can I stop Windows DNS server properties settings from changing by themselves?
get swap usage for a process
inverse of `lsof -i`