Five New Optimizely Certifications are Here! Validate your expertise and advance your career with our latest certification exams. Click here to find out more

AI OnAI Off

How to disable CMS on web front servers

Vote:
 

Hi

In a load balanced environment, I would like to turn off the CMS from the www front servers (we have a dedicated cms server).

What is best practice when it comes to this, just empty the field for cms url in episerver.config or something else?

regards

Fredrik

#87365
Jun 11, 2014 16:19
Vote:
 

Hi Freguz,

There's a nice article in the documentation on what we recommend:

http://world.episerver.com/Documentation/Items/Developers-Guide/EPiServer-CMS/75/Security/Securing-edit-and-admin-user-interfaces/

/T

#87382
Jun 11, 2014 23:51
Vote:
 

Thanks a lot Toni!

The magic text was:

"Follow the description below to make the edit/admin user interfaces unavailable on a publicly facing server.

In web.config, both for <location path="EPiServer"> and <location path="EPiServer/CMS/admin">, remove any allow roles (WebEditors, WebAdmins, Administrators and additonal ones) so that the <authorization> sections only contain the following:"

#87389
Jun 12, 2014 9:41
This topic was created over six months ago and has been resolved. If you have a similar question, please create a new topic and refer to this one.
* You are NOT allowed to include any hyperlinks in the post because your account hasn't associated to your company. User profile should be updated.