Enabling Authentication for Directory Search

By default, Directory Search is enabled for anonymous authentication. We have found that most of our customers use Directory Search as an Intranet application and thus it is easier to access if you don't have to login. Switching to forms-based or Integrated Windows Authentication (IWA) is simple. This is enabled via the web.config file. As part of the base installation we provide an alternate web.config file for this purpose.


Enabling Forms Based Authentication

  1. Logon to the console of the server that supports Directory Search
  2. Navigate to the c:\inetpub\wwwroot\DirectorySearch folder (or whichever folder holds the Directory Search app.)
  3. Locate the web.config file and rename it to web.config.default.
  4. Locate the web.config.authentication and rename it to web.config
  5. Run IISRESET.EXE
  6. Check the Directory Search web page. It should now provide a logon form

*Note: If your users are accessing Directory Search over a public network or the Internet, we recommend enabling and requiring HTTPS.


Enabling Integrated Windows Authentication

If your web browsers and server supports Integrated Windows Authentication (IWA), you can configure Directory Search to use IWA instead.

  1. Perform all of the steps necessary to enable forms-based authentication
  2. Make a backup copy of the new c:\inetpub\wwwroot\DirectorySearch\Web.Config file
  3. Open the c:\inetpub\wwwroot\DirectorySearch\Web.Config file in an editor like Notepad or Notepad++.
  4. Locate this line:
        <authentication mode="Forms">
  5. Change "Forms" to "Windows" like this:
        <authentication mode="Windows">
  6. Run IISRESET.EXE
  7. Check the Directory Search web page from a browser that supports IWA.

For more information on Ithicos applications and IWA, see this TechNote: Enabling Integrated Windows Authentication

Last Review: 12 May 2017