This is the original post on stackoverflow but I can't find a proper answer and I think this is a bug in IIS:
http://stackoverflow.com/posts/31246326/edit
I've been searching for a solution for this headache for a quite long.
I have a website that I want to deploy to my web server, so I'm using IIS 7 and followed these steps to authenticate logging into it:
1- Open IIS
2- Add Website (with random port number)
3- Set the application pool for it to a specific Identity
4- Disable Anonymous authentication then enable Windows Authentication.
5- Remove "Allow All users" rule
6- Add allow rule for an admin user and give him full control access
When I try to access it it asks for a username and password which must be the same user as the one added in step 6 .
The problem is whenever I click ok the logging window keeps popping up and can't access the website as a result
I also tried to add deny rule for anonymous users
Is there anything must be added to web.config file or something ? Do I need to install something or disable something ?
Any suggestion is very appreciated
**EDIT**
This is my web.config file authorization section
<system.web><authentication mode="Windows" /><compilation targetFramework="4.5" /><httpRuntime targetFramework="4.5" /><pages validateRequest="false"></pages><identity impersonate="false" /><authorization><allow users="SomeUser" /><deny users="*"/></authorization></system.web>
