Windows Authentication

Users are authenticated by Windows and IIS, Cadcorp SIS WebMap manages user and group access rights.

Open web.config in a suitable text editor. (You can find this config file in your WebMap installation folder)

  1. In the web.config uncomment or add the following to the appSettings
    <add key="owin:appStartup" value="Windows" />
  2. Comment out all other entries that start with <add key="owin:
  3. Locate the following section:
    <authentication   mode="Windows">
    <forms loginUrl="Login.aspx" timeout="3000" />

and replace it with:

<authentication mode="Windows">
<forms loginUrl="Login.aspx" protection="All" defaultUrl="Map.aspx" path="/" timeout="3000" />
<deny users="?" />

This will set Windows Authentication for the whole site (both map and admin page).

  1. Modify the <identityConfig/> section to include:
    RequireUniqueEmail="false" />
  2. In IIS authentication for the website, set Windows Authentication to Enabled. Disable all other authentication.

Re-creating Groups when upgrading from Web Map Layers 8.0.2549

Because of enhancements to the security model, all Groups need to be manually re-created (if Windows Authentication is already used by a previous instance of Web Map Layers).

  • It is recommended that the new version of WebMap is installed alongside the existing instance.
  • It is recommended that the upgrade of the database is performed from Web Map Layers 8.0.2148
  • The webMapLayersConfig.db from the previous version can be dropped into the new installation of Web Map Layers 8.0.2549. After adding the old database configuration file, run the newer version of Web Map Layers to automatically update the webMapLayersConfig.db.
  • User permissions will be retained.
  • All Group permissions need to be re-created. Delete all existing Groups and add them again using the Admin Interface. Ensure you define the domain name and group.