Free Preparation Discussions
MENU
Esri EAEP2201 Exam - Topic 3 Question 15 Discussion
Topic #: 3
A portal administrator is trying to enable web-tier authentication (IWA) for the ArcGIS Enterprise portal using Active Directory and IIS.
Steps taken:
Configured portal with Microsoft version of ArcGIS Web Adaptor
Set identity store to Active Directory
Added AD users to the portal
Disabled anonymous access in Portal
Users are not prompted to sign in and are not automatically logged in.
What should the administrator do next?
When using IWA through the Web Adaptor (IIS), the IIS server itself must be configured to deny anonymous access and allow Windows Authentication. Simply disabling anonymous access within the Portal settings is not enough.
From Esri's web-tier authentication guide:
''For IWA to function as expected, anonymous access must be disabled in IIS for the ArcGIS Web Adaptor, and Windows Authentication must be enabled. If IIS still allows anonymous access, users will bypass authentication prompts.''
Option B is irrelevant here---user types don't affect login behavior.
Option C is a content sync feature, not related to authentication.
Option D (Enable Windows Authentication) is correct only if it hasn't already been done, but the missing step is disabling anonymous access in IIS.
ArcGIS Enterprise -- Configuring Web-Tier Authentication with IIS
Currently there are no comments in this discussion, be the first to comment!