How to allow mixed-mode authentication in IIS 7.0

2019-04-09 06:16发布

How do you back-door authenticate Windows users into a website using forms authentication running on IIS 7.0?

1条回答
霸刀☆藐视天下
2楼-- · 2019-04-09 07:04

Create a separate page to handle windows logins. This page will authenticate the user and then set the Forms cookie for them. Then, add the page to the web.config to tell IIS 7 to use Windows authentication on that particular page.

<configuration>
...
<!-- this file captures the user and redirects to the login page -->
  <location path="Account/WindowsLogin.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
    <system.webServer>
      <security>
        <authentication>
          <windowsAuthentication enabled="true" />
          <anonymousAuthentication enabled="false" />
        </authentication>
      </security>
    </system.webServer>
  </location>
</configuration>
查看更多
登录 后发表回答