Authorization Rules
Applies To: Windows Server 2012 R2, Windows Server 2012
Use the Authorization Rules page to manage the list of Allow or Deny rules that control access to content.
Sort the list by clicking one of the feature page column headings.
Related scenarios
In this document
UI Elements for Authorization Rules
The following tables describe the UI elements that are available on the feature page and in the Actions pane.
Feature Page Elements
Element Name |
Description |
||
---|---|---|---|
Mode |
Displays the type of rule. Values can be either Allow or Deny. Mode values indicate whether the rule is designed to allow or deny access to content.
|
||
Users |
Displays the user type, user names, or user groups to whom the rule applies. |
||
Roles |
Displays the Microsoft Windows role or roles to which the rule applies, for example, the Administrator role. |
||
Verbs |
Displays the HTTP verb or verbs to which this rule applies, for example, GET or POST. |
||
Entry Type |
Displays whether the item is local or inherited. Local items are read from the current configuration file, and inherited items are read from a parent configuration file. |
Actions Pane Elements
Element Name |
Description |
---|---|
Add Allow Rule |
Opens the Add Allow Authorization Rule dialog box from which you can define rules for access to content. |
Add Deny Rule |
Opens the Add Deny Authorization Rule dialog box from which you can define rules for access to content. |
Edit |
Opens the Edit Allow Authorization or Edit Deny Authorization dialog box from which you can edit authorization rules. This action is available only when an item is selected from the list on the feature page. |
Remove |
Removes the item that is selected from the list on the feature page. |
Allow Authorization Rule Dialog Boxes
Use the Add Allow Authorization Rule,** **the Edit Allow Authorization Rule, the Add Deny Authorization Rule, or the Edit Deny Authorization Rule dialog box to define rules for access to content.
Element Name |
Description |
---|---|
All users |
Select this option to manage access to content for both anonymous and authenticated users. By default, there is an allow rule configured for All users. |
All anonymous users |
Select this option to manage access to content for users that are not authenticated. |
Specified roles or user groups |
Select this option to manage access to content for specific Microsoft Windows roles or user groups. |
Specified users |
Select this option to manage access to content for a specific user account. |
Apply this rule to specific verbs |
Specifies that the rule applies to specific HTTP verbs such as GET or POST. |