How to Disable NTLM Authentication for IIS

Written by jim campbell
  • Share
  • Tweet
  • Share
  • Pin
  • Email
How to Disable NTLM Authentication for IIS
Add security on your IIS server by removing NTLM authentication. (data security image by dinostock from

NT LAN Manager (NTLM) protocol allows network administrators who host web pages on an Internet Information Services (IIS) computer to integrate Windows anonymous authentication. This means users are not prompted for a username and password when viewing web pages on the server. The anonymous user is used by the server to access server files. This authentication is invisible to the web reader. You disable this type of access in IIS to force a user to log into the web server using his own username and password on the network.

Skill level:


  1. 1

    Click the Windows "Start" button and select "Administrative Tools." Click "Internet Services Manager." This opens your IIS console.

  2. 2

    Right-click the website you want to edit. Select "Properties." In the opened properties window, click the "Directory Security" tab.

  3. 3

    Click the "Edit" button. Remove the checkmark next to "Enable Anonymous Access." This disables the anonymous access using NTLM authentication. Now users are required to enter a username and password before reading web content.

  4. 4

    Click "OK" to save your settings. Click "OK" again in the main properties window to close it. Right-click the website again and select "Restart." This restarts the IIS services, so the new settings take effect.

Don't Miss

  • All types
  • Articles
  • Slideshows
  • Videos
  • Most relevant
  • Most popular
  • Most recent

No articles available

No slideshows available

No videos available

By using the site, you consent to the use of cookies. For more information, please see our Cookie policy.