Admin Portal — limit access

Admin Portal should only be accessible for admins or support staff, and regular users should only use the User Portal. It is recommended to limit the access to the Admin Portal.

Limit access using IIS Manager

Use IIS Managers own tool Authorization Rules on the Pointsharp ID Server to limit the access.

Follow these steps:

  1. Create a local group on the Pointsharp ID Server (in Windows itself).

  2. Add all users that needs access to Admin Portal, into this group.

  3. Open IIS Manager and mark Admin Portal site.

  4. Open Authorization Rules and create a new rule that only allows the new local Windows Group previously created.

  5. Remove the default rule that allows everyone.

  6. Last step is to set the authentication for the Admin Portal site in the IIS Manager to use Windows Authentication (only this option — disable all others).

This option will not consume any extra licenses for any admin or support accounts accessing the Admin Portal, since the authentication itself is not via Pointsharp but Windows directly.

Limit access using SmartAuth

You can also enable Forms Authentication and use Pointsharp ID, and a SmartAuth Rule to accomplish the same thing. This will then take a license for each user that is not already a PSID Member, since the authentication is then handled by the Pointsharp ID Server. This may not be a preferable solution due to additional license cost for admin or support accounts not using Pointsharp in other scenarios.