We’re currently experiencing a high volume of support requests, which may result in longer response times — Thank you for your patience and understanding.
Community FAQ
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
TelhioCU
Engaged Sweeper
I have tried to apply the changes to the web.config to limit access to the Lansweeper web console, but it either prevents everyone, or doesn't work at all.

Can you look at my config and tell me where I am missing something?

note: The group name has a space in it, and is a total of 22 characters including the space if that has a bearing on anything

These settings don't work:

</appSettings>
<system.web>
<authentication mode="Windows"/>
<identity impersonate="true" />
<authorization>
<allow roles=""domain\11111111111 2222222222"" />
<deny users="*" />
</authorization>
<compilation debug="true" strict="false" explicit="true">
<assemblies>
<add assembly="System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/>
<add assembly="System.Design, Version=2.0.0.0, Culture=neutral, PublicKeyToken=B03F5F7F11D50A3A"/>
<add assembly="System.Web.Extensions.Design, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/>
<add assembly="System.Windows.Forms, Version=2.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/>
</assemblies>

This allows everyone to access:

</appSettings>
<system.web>

<compilation debug="true" strict="false" explicit="true">
<assemblies>
<add assembly="System.Web.Extensions, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/>
<add assembly="System.Design, Version=2.0.0.0, Culture=neutral, PublicKeyToken=B03F5F7F11D50A3A"/>
<add assembly="System.Web.Extensions.Design, Version=1.0.61025.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35"/>
<add assembly="System.Windows.Forms, Version=2.0.0.0, Culture=neutral, PublicKeyToken=B77A5C561934E089"/>
</assemblies>


Additionally, if I don't want/can't allow only the members of one group, how do I allow just a string of users?

<allow users="username,username,username" /> - would this be correct?

Thanks,

Tim
4 REPLIES 4
TelhioCU
Engaged Sweeper
This is still a hot issue for us. If there are other ideas/recommendations we would appreciate more input.

Thanks,

TCU
TelhioCU
Engaged Sweeper
Maybe I am missing something, but if I remove the "localmachine/users" read access:

- I can't get to the page unless I am the appropriate (as I configured it) user/group.
- If I am a member of the allowed group I can get to the site BUT I cannot drill down into the rest of the web console pages without user access

Keep getting "Server Application Unavailable"

Thanks,

TCU
TelhioCU
Engaged Sweeper
Obviously a good option.

Thanks for the info.

However, as per the documentation included with the Lansweeper product this option is available. I would like to leverage the capabilities of the product.

Thanks again,

TCU
shamus
Engaged Sweeper
Why not disable anonymous access in IIS and change it to Integrated Windows authentication, then you add/remove users in windows security on the root of the lansweeper website folder.

Archive

This board contains archived posts from the retired Lansweeper Forum and Insiders Community.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now