Edit Rule Dialog Box

The Edit Rule dialog box enables you to create a new authorization rule or edit an existing one. You can create user accounts and roles using Microsoft Windows authentication or ASP.NET Forms authentication (ASP.NET membership).

To open the Edit Rule dialog box

  1. In the Windows Control Panel, open Administrative Tools, and then click Internet Information Services (IIS) Manager.

    IIS Manager appears.

  2. Under Internet Information Services, expand Servername (local computer), expand Web Sites, right-click either Websitename or Default Website, and then click Properties.

    The Web Site Properties dialog box appears.

  3. Click the ASP.NET tab, and then click Edit Configuration.

    The ASP.NET Configuration Settings dialog box appears.

  4. Click the Authorization tab.

    • To add a rule, click Add.

    • To edit a rule, click a rule, and then click Edit.

    The Edit Rule dialog box appears.

Tasks

Using the Edit Rule dialog box, you can do the following:

  • Create a new authorization rule.

  • Edit an existing authorization rule.

UI Elements

  • Rule type
    Click Allow to allow all users access.

    -Or-

    Click Deny to deny all users access.

    For detailed information about rules, see AuthorizationRuleCollection.

  • Verbs
    Click All Verbs to specify that all ASP.NET HTTP transmission methods are allowed access. All Verbs is the default.

    To limit authorization to specific HTTP verbs, click Specific verbs, and then type a comma-separated list of the HTTP transmission methods that are granted access.

    Verbs that are registered to ASP.NET are GET, HEAD, POST, and DEBUG.

  • Users and roles
    Complete one or more of the following actions to apply the rule:

    • To apply the rule to all users, click All users.

    • To apply the rule to only to users who are not logged in, click Anonymous users.

    • To apply the rule to a specific set of user accounts, click Users, and then type a comma-separated list of user account names.

    • To apply the rule to a specific set of roles, select the Roles check box, and then type a comma-separated list of role names.

    If you specify both Users and Roles, the rule applies only to user accounts that are in the specified roles.

    Use Windows authentication or ASP.NET Forms authentication (ASP.NET membership) to define user accounts and roles.

    Note

    This setting is required.

  • OK
    Click to apply the rule.
  • Cancel
    Click to cancel changes.

See Also

Tasks

How to: Implement Simple Forms Authentication

Reference

Authorization Tab, ASP.NET Configuration Settings Dialog Box
Authorization Tab, ASP.NET Configuration Settings Dialog Box

Concepts

Forms Authentication Across Applications