why my account in administrators group can not access an asp.net page after i have allowed access only to administrators

iis permission denied
iis virtual directory permissions problem
grant asp net access to folder
system unauthorizedaccessexception: access to the path is denied asp net
access is denied iis virtual directory
how to access network files from iis applications
iis access to the path is denied
iis website permissions

well my question is pretty simple. I have an account "saqib" on windows 7. i have added this account in "Administrators" group. Now my requirement is that i want "saqib" to access an admin page in my asp.net application. I have enabled windows authentication and disabled anonymous authentication in IIS-7. I have added a folder with an admin page in it in my application. I have also added a web.config file to this folder and added these settings.

<?xml version="1.0"?>
<configuration>
<system.web>
  <authorization>
    <allow roles="Administrators"/>
    <deny users="*"/>
  </authorization>
</system.web>
</configuration>

now when i want to access this admin page by entering username as "saqib" and my password, i can not access my admin page. why ???

Although i can access that admin page by using windows built in "Administrator" Account having same settings in web.config file. why is this happening ??

Please, review this tutorial on MSDN to better understand your code. The main problem is that you are not give a chance for your admin account to authetificate - you simply deny all the users in the last line.

So you have to use the <deny users="?" />, as @Dust mentioned, but not instead of <deny users="*" />, but before all the directive, like this:

<authorization>
  <deny users="?" />
  <allow roles="Administrators" />
  <deny users="*" />
</authorization>

Also make sure you've provided the authentication element for setting the auth mode for your application, for example:

<authentication mode="Forms" >
  <forms loginUrl="login.aspx" name=".ASPXFORMSAUTH" />
</authentication>

web config, why my account in administrators group can not access an asp.net page after i have allowed access only to administrators � Ask Question I have also added a web.config file to this folder and added these settings. <?xml version="1.0"?>� As a matter of fact, if we create another user and put it in the Administrators group, it will NOT have the same rights as the built-int Administrator user itself: to be more precise, it will be unable to do a lot of administrative tasks. Here are some examples: A file is owned by SYSTEM and the Administrators group has full

Shouldn't it be <deny users="?" />. It's confusing what you're doing because you're denying all users but a role of Admin is also a user, so it makes sense that it is not working.

Troubleshooting common permissions and security-related issues in , Do simple .html and .asp pages serve from IIS? Is this the only application that fails? Please contact the website administrator for details," it's not of much use to All the necessary permissions for the ASPNET account were in place. " cannot open a file for writing," and not the usual ACCESS DENIED� During this installation, an account named ASP.NET is created. If your computer previously displayed your desktop immediately after starting, you may notice a ‘Welcome’ screen when you start the computer with your existing user account and the ASP.NET account. This happened because there are now two accounts on your computer.

The problem is with Windows UAC. Even if the logged in account is an admin, UAC blocks the admin privilege, which is why you get the popup when you are installing some software and require elevation to admin, and runs the admin user as a regular user.

I found some work around here in stackoverflow while tackling the same issue but never got to get it work in the web.config. In .NET/C# test if process has administrative privileges

Default permissions and user rights in IIS, Special permission allowed for the Administrators group for subfolders and files only is equivalent to Full control. Users, Read & execute. List� 1 why my account in administrators group can not access an asp.net page after i have allowed access only to administrators May 10 '14 1 How to show a specific item in dropdownlist based on specific value of a cell of a table-row in asp.net gridview control?

Windows Users in Administrators Group without Admin rights, Administrators have complete and unrestricted access to the A file is owned by SYSTEM and the Administrators group has full control. group will be finally able to act just like the Administrator account. I am the administrator, so if the administrator cannot install software, which can? NET Core ASP. I checked the local security policy and sure enough, the accounts weren't in any of the groups that were allowed network logon. So, lesson learned. If windows authentication is enabled, make sure that the accounts that are going to access the website are also allowed to "Access this computer from the network."

Authentication and Authorization with Windows Accounts in ASP.NET, NET. If you are providing web-based information for a closed group of users, The user enters his username and password in the login page and, after The need for authentication occurs when we have some resources that we aren't administrators from accessing the file by setting up its ACL properly. The step you have taken can also be done through the user interface. By switching off "User Account Control" [UAC] you have allowed anybody who manages to access your computer to install whatever they like on your computer without any indication being shown to you. You ought not to connect your computer to the internet in its present condition.

Manage User Accounts and Settings in Windows 10, This chapter from Windows 10 Step by Step guides you through Page 1 of 6 Next Computer access is managed through user accounts. account credentials allows you to share settings and files among all your devices. If you have an administrator account—even if you're the only person who will be� IIS provides anonymous access to resources by using an IUSR account. After the request is passed along to ASP.NET, the application code is run by using the application pool identity. Impersonation can be enabled both through IIS and ASP.NET code if the application uses anonymous authentication, and if one of the following conditions is true:

Comments
  • no dear, you are not right, because if we <deny users="?"/> then it means we are denying anonymous users but allowing ALL authenticated user ( i.e the users who provide correct username and password) even if they are not part of "Administrators" group. I have tried your suggestion before but i concluded to the point that i am saying in this comment.