You are here: Installation Overview > Set Up Security Privileges > Windows Server 2003 > Set up a more secure site without anonymous access on Windows Server 2003

Set up a more secure site without anonymous access on Windows Server 2003

A more secure alternative to the default setup of Faculty Access for the Web is not to use anonymous access. You disable anonymous access to the Faculty Access for the Web Virtual Directory in the Internet Service Manager and enable only integrated Windows authentication.

You must create or add Windows 2003 user accounts (local or domain) on the Web server for each Faculty Access for the Web user. You add these accounts to the BBFEWebGroup so they are granted all necessary directory permissions. Users must log into the network with a Windows 2003 account before they can log into Faculty Access for the Web.

1. From the Control Panel, select Administrative Tools, Internet Information Services (IIS) Manager. The Internet Information Services (IIS) Manager screen appears.

2. In the tree view on the left, click the plus sign beside the server name, then beside Web Sites, and then select Default Web Site.

3. Right-click the FAWeb7 folder and select Properties. The FAWeb7 Properties screen appears.
4. Select the Directory Security tab.

5. In the Authentication and access control frame, click Edit. The Authentication Methods screen appears.

6. Clear Enable anonymous access.
7. To return to the FAWeb7 Properties screen, click OK.
8. To close the FAWeb7 Properties screen, click OK.
9. Close the Internet Information Services (IIS) Manager screen.
10. From the Control Panel, select Administrative Tools, Computer Management. The Computer Management screen appears.

11. In the tree view on the left, click the plus sign beside System Tools and then beside Local Users and Groups.
12. Add each user to the BBFEWebGroup. You can add users from the local computer or from their domain. For more information about how to add users to groups, open Help in Computer Management.
13. Verify the permissions of the BBFEWebGroup. For permissions information, see Set Up Security on Windows Server 2003.

As users browse to the login page of Faculty Access for the Web, they log into the network with a Windows 2003 account before they log into Faculty Access for the Web.

If your SQL Server uses Windows Authentication and resides on a separate server, you must edit the Web.config file impersonate line. For more information, see Set Up Faculty Access for the Web to Use Windows Authentication.