Authorization Rules

 

Applies To: Windows Server 2012 R2, Windows Server 2012

Use the Authorization Rules page to manage the list of Allow or Deny rules that control access to content.

Sort the list by clicking one of the feature page column headings.

Related scenarios

In this document

UI Elements for Authorization Rules

The following tables describe the UI elements that are available on the feature page and in the Actions pane.

Feature Page Elements

Element Name

Description

Mode

Displays the type of rule. Values can be either Allow or Deny. Mode values indicate whether the rule is designed to allow or deny access to content.

Note

   If a role, user, or group has been specifically denied access by one rule, it cannot be granted access by another.

Users

Displays the user type, user names, or user groups to whom the rule applies.

Roles

Displays the Microsoft Windows role or roles to which the rule applies, for example, the Administrator role.

Verbs

Displays the HTTP verb or verbs to which this rule applies, for example, GET or POST.

Entry Type

Displays whether the item is local or inherited. Local items are read from the current configuration file, and inherited items are read from a parent configuration file.

Actions Pane Elements

Element Name

Description

Add Allow Rule

Opens the Add Allow Authorization Rule dialog box from which you can define rules for access to content.

Add Deny Rule

Opens the Add Deny Authorization Rule dialog box from which you can define rules for access to content.

Edit

Opens the Edit Allow Authorization or Edit Deny Authorization dialog box from which you can edit authorization rules. This action is available only when an item is selected from the list on the feature page.

Remove

Removes the item that is selected from the list on the feature page.

Allow Authorization Rule Dialog Boxes

Use the Add Allow Authorization Rule,** **the Edit Allow Authorization Rule, the Add Deny Authorization Rule, or the Edit Deny Authorization Rule dialog box to define rules for access to content.

Element Name

Description

All users

Select this option to manage access to content for both anonymous and authenticated users. By default, there is an allow rule configured for All users.

All anonymous users

Select this option to manage access to content for users that are not authenticated.

Specified roles or user groups

Select this option to manage access to content for specific Microsoft Windows roles or user groups.

Specified users

Select this option to manage access to content for a specific user account.

Apply this rule to specific verbs

Specifies that the rule applies to specific HTTP verbs such as GET or POST.