1

I am building a PHP application and would like to lock the backend (even login page) to only be accessible to preauthorized people - even further be able to link activities to the authorized individuals.

I am aware that such locking may be done using SSL or a certificate of sort but not sure what it is exactly or how to achieve it. I have seen different companies implement it in ways as mentioned below

  • At one company, A user fills in a form with details and the company issues a certificate that the user installs on the browser in order to access the backend

  • Another company, A user is given an exe to run each time they want to access the backend.

My PHP application is running on windows server 2016 and I would like to know how to achieve both or either of the above. A resource or specific would be appreciated.

I am not sure if this question is right here or another Stack Exchange Network, kindly forgive my ignorance.

Improve this question
3
  • User in a Active Directory domain ? in IIS you could disable anonymous access
    – yagmoth555
    Aug 20, 2017 at 13:41
  • @yagmoth555 how would i then give access to the user dynamically?
    – Erick
    Aug 20, 2017 at 16:59
  • I mean, is it a website for a private lan with an AD, or is it facing the web? as if the internet, my tip is useless for you
    – yagmoth555
    Aug 20, 2017 at 17:04

0

Reset to default

You must log in to answer this question.

Browse other questions tagged .