Password protect single directory in IIS 8

windows-server-2012 iis iis-8

How can I password protect a single directory in IIS 8 under Windows Server 2012 Standard?

Example: I want to be able to access mysite.com, but when navigating to mysite.com/secured, I want to be prompted for a password for access.


  • Open your IIS manager and select the directory you want to protect.

  • Under the "IIS" section select "Authentication".

  • Disable "Anonymous Auth".

  • Enable the desired Auth method (usually "Basic Auth") and it will be valid for this directory only.

  • Add a User account.

    • Left click directory in IIS, Edit Permissions..., Security, Edit, Add, enter a user from your Active Directory

  • Give that user Read, Execute, List Permissions on the directory needed, then login via the newly created user.

    • left click newly added user and check Allow for Full control

  • To log in, use the domain username and password (i.e. UN: [email protected], PW: p@$$w0rd).

    Note: You can add / remove auth methods @ Role Services window.

As an alternative you can code some auth system using serverside languages like PHP / ASP

Related

OCSP validation - unable to get local issuer certificate
Update Docker container without downtime
Curl Command Send Asynchronous Request
Get-aduser Password Expired Filter not working correctly
Why is my Apache able to 200 serve .php files that include a trailing slash?
DB Full Vacuum, Cluster, Analyze - in which order?
Unsure if I understand TransactionAwarePersistenceManagerFactoryProxy
How serious is this new ASP.NET security vulnerability and how can I workaround it?
sendmail: how to configure sendmail on ubuntu? [closed]
What is the C runtime library?
Is there a setting on Google Analytics to suppress use of cookies for users who have not yet given consent
Android 4.3 Bluetooth Low Energy unstable