locked
Impersonate user by IP address RRS feed

  • Question

  • Is it possible to give access to a sharepoint site using a specific ip address?

    Thanks.

    Wednesday, November 17, 2010 11:46 AM

Answers

  • IIS security controls .... or just simply use a firewall ...

    Do you need to block all the other connections or do you actually want to automatically "log in a user" if he connects using certain IP addresses (this is what I understand from the title of your post)? If you need to "automatically sign in users" based on their IP address (doesn't feel like a very "secure" solution), then you need to have the relation user <-> IP address and then just use a http module for the "SSO". Depending on the authentication type you use ... you might need to recover the user password in the SSO HTTP module. If you want to achieve this, why not use certificated and the the IIS function client certificate mapping?

     


    Florin DUCA Logica Business Consulting, France
    • Proposed as answer by Scoutman MVPMVP Friday, November 19, 2010 1:53 AM
    • Marked as answer by Seven M Friday, November 26, 2010 2:18 AM
    Thursday, November 18, 2010 11:11 PM
  • Sure, you can do this using IIS security controls. Deny all and then allow a specific IP Address in the IP Address restrictions element of IIS.
    Cheers
    Spence
    www.harbar.net
    Microsoft Certified Master | SharePoint 2010
    Microsoft Certified Master | SharePoint 2007
    • Proposed as answer by Scoutman MVPMVP Friday, November 19, 2010 1:53 AM
    • Marked as answer by Seven M Friday, November 26, 2010 2:18 AM
    Thursday, November 18, 2010 10:43 PM

All replies

  • Sure, you can do this using IIS security controls. Deny all and then allow a specific IP Address in the IP Address restrictions element of IIS.
    Cheers
    Spence
    www.harbar.net
    Microsoft Certified Master | SharePoint 2010
    Microsoft Certified Master | SharePoint 2007
    • Proposed as answer by Scoutman MVPMVP Friday, November 19, 2010 1:53 AM
    • Marked as answer by Seven M Friday, November 26, 2010 2:18 AM
    Thursday, November 18, 2010 10:43 PM
  • IIS security controls .... or just simply use a firewall ...

    Do you need to block all the other connections or do you actually want to automatically "log in a user" if he connects using certain IP addresses (this is what I understand from the title of your post)? If you need to "automatically sign in users" based on their IP address (doesn't feel like a very "secure" solution), then you need to have the relation user <-> IP address and then just use a http module for the "SSO". Depending on the authentication type you use ... you might need to recover the user password in the SSO HTTP module. If you want to achieve this, why not use certificated and the the IIS function client certificate mapping?

     


    Florin DUCA Logica Business Consulting, France
    • Proposed as answer by Scoutman MVPMVP Friday, November 19, 2010 1:53 AM
    • Marked as answer by Seven M Friday, November 26, 2010 2:18 AM
    Thursday, November 18, 2010 11:11 PM