How to disable CMS on web front servers

Vote:
 

Hi

In a load balanced environment, I would like to turn off the CMS from the www front servers (we have a dedicated cms server).

What is best practice when it comes to this, just empty the field for cms url in episerver.config or something else?

regards

Fredrik

#87365
Jun 11, 2014 16:19
Vote:
 

Hi Freguz,

There's a nice article in the documentation on what we recommend:

http://world.episerver.com/Documentation/Items/Developers-Guide/EPiServer-CMS/75/Security/Securing-edit-and-admin-user-interfaces/

/T

#87382
Jun 11, 2014 23:51
Vote:
 

Thanks a lot Toni!

The magic text was:

"Follow the description below to make the edit/admin user interfaces unavailable on a publicly facing server.

In web.config, both for <location path="EPiServer"> and <location path="EPiServer/CMS/admin">, remove any allow roles (WebEditors, WebAdmins, Administrators and additonal ones) so that the <authorization> sections only contain the following:"

#87389
Jun 12, 2014 9:41
This topic was created over six months ago and has been resolved. If you have a similar question, please create a new topic and refer to this one.
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.