@Dave Patrick - thanks for heads-up. I asked my question on that forum
P.S. Since modifying web.config did not work for me I tried another approach.
- I created a user on app SL e.g. user1
- I changed Authentication in IIS and set it for 'Windows Authentication" enabled
- I went to security Tab of directory where my site is located e.g. C:\inetpub\wwwroot\app and added user e.g. win_user01 and granted read, list folders and execute permission.
Is my expectation of workflow correct:
user win_user01 is a valid user of our network hence when he'll login into his client 'Windows Authentication" will be in place.
Next .. he opens the browser e.g. Chrome and tries to connect to SL app. He will have to provide user1 creds and be able to login.
My assumption is: if win_user01 wouldn't be granted access to 'directory 'he would fail to login. Is it correct?
In other words … only users that are added to directory and granted permission will be able to login into application. Is it correct?