Once the Basic Authentication role is installed on the server running IIS, follow these steps to enable it in IIS.
Note:
It is also recommended to disable Anonymous Authentication. IIS will still process FHIR messages with Anonymous Authentication enabled, but the FHIR endpoint will reject the messages unless the user is authenticated.
- Open the Internet Information Services (IIS) Manager application.
- Browse to the site for the Application Server used for FHIR and double-click Authentication in the Features View pane.
- Select Basic Authentication from the list and click the Enable action.
- (Optional) Ensure that Anonymous Authentication is disabled in the list. If it is not disabled, select it and click the Disable action.