- Go into IIS Manager, and select the Fastvue Sophos Reporter site or virtual directory.
- Ensure 'Features' view is selected at the bottom of the middle pane and Double-click Authentication.
- Right click 'Windows Authentication' and select Enable. (If Windows Authentication is not in the list, you need to add the 'Windows Authentication' Role Service in Server Manager | Web Server (IIS) | Role Services).
- Select the Fastvue site or virtual directory again to return to the IIS features view, then double-click 'Authorization Rules' and add your allow and deny rules. (If Authorization Rules is not in the list, you need to add the 'URL Authorization' Role Service in Server Manager | Web Server (IIS) | Role Services).
It may also be a good idea to add secure bindings to the site and selecting Require SSL in IIS's SSL Settings.
For a more detailed description of this process, including screenshots, please see our blog post How To Secure The Fastvue Sophos Reporter Web Site.
To secure the Fastvue Reporter site to administrators, and allow others to simply view reports, please see our article on Securing Fastvue Reporter for Private Report Sharing.