You can configure the IIS Authentication plug-in with the Advanced Authentication server, OAuth 2.0 event details and then integrate the plug-in with IIS Manager to implement multi-factor authentication for the websites hosted on the IIS server.
To configure the IIS Authentication plug-in perform the following steps:
Click Start > Administration Tool on Windows system where you have installed the IIS Authentication plug-in.
Specify the following details:
Table 4-1 IIS Authentication plug-in parameters
|
Parameter |
Description |
|---|---|
|
Server URL |
The DNS name or IP address of the Advanced Authentication server without https://. |
|
Client ID |
ID that is obtained from the OAuth 2.0 event. |
|
Client secret |
Secret that is obtained from the OAuth 2.0 event. |
|
Tenant name |
If the Multitenancy mode is enabled, specify the preferred tenant name. If the Multitenancy mode is not enabled then specify TOP by default. |
Click Save.
Click Registrations.
The Manage IIS registrations window is displayed. All the websites that are hosted on the IIS Manager are populated in this window.
Select the preferred website and click Enable.
The users must pass the authentication methods in the IIS Authentication plug-in to access these websites that are enabled in the Manage IIS registrations window.
To disable a website, select the website and click Disable. The users can access the disabled websites without authenticating through the IIS Authentication plug-in.
To update the websites list, click Refresh.
To integrate the IIS Manager with the IIS Authentication plug-in, perform the following steps:
Open the IIS Manager console.
In Features View of IIS Manager, double-click Authentication.
On the Authentication page, select Anonymous Authentication.Click Edit to set the anonymous authentication for users who will connect to the site.
In the Edit Anonymous Authentication Credentials dialog box, select Application pool identity and set this identity to LocalSystem.