This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 26%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAN%3C/text%3E%3C/svg%3E)
Dear All.
If any url matches hhtps://abc.com/owa/auth/logon.aspx it has to be blocked
How do I do ti I tried multiple steps on IIS but no luck
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(316.8, 90%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAZ%3C/text%3E%3C/svg%3E)
Hello, @Athique Nihal,
Is there any update on this thread? If the issue has been resolved, please mark the helpful replies as answers, this will make answer searching in the forum easier and be beneficial to other community members as well. Thanks for your understanding.
Best Wishes,
Alex Zhang
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 73%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAL%3C/text%3E%3C/svg%3E)
Hi,
Here are some links that might help you :
https://zcusa.951200.xyz/en-us/iis/manage/configuring-security/configure-request-filtering-in-iis
https://zcusa.951200.xyz/en-us/iis/extensions/url-rewrite-module/using-the-url-rewrite-module
https://www.iis.net/downloads/microsoft/url-rewrite
Sincerely,
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 32%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMT%3C/text%3E%3C/svg%3E)
Firstly your IIS server would never get an arbitrary request for https://abc.com unless your IIS server is actually hosting that domain. So the host information is a mute point here. IIS only kicks in once it matches the host information to a site you are hosting. If you aren't hosting the site then nothing happens (and DNS shouldn't let it get there anyway).
So you want to block owa/auth/logon.aspx? That looks like the old Outlook Web Authentication URL. To block a URL, that may or may not be valid, then you should probably use URL rewriting. This allows you to specify the path(s) that you want to treat differently. You could also use HTTP Redirection but the only responses are to redirect somewhere else. You could redirect to a non-existent URL and accomplish the same thing.
Hello, @Athique Nihal,
Welcome to the Microsoft Q&A platform!
In order to block a specific URL in IIS, it is recommended for you to accomplish it by using the URL Rewrite module.
If you haven’t already installed the URL Rewrite Module, you need to download and install it. You can find it on the Microsoft website. Then open IIS Manager, select your site, and double-click on "URL Rewrite." Add a new rule by selecting "Request Blocking," then configure the rule by setting the URL to the path you want to block (e.g., /owa/auth/logon.aspx). Choose "Abort Request" or "Custom Response" with a status code like 403 and apply the rule to save and enable it. It may be necessary to restart IIS for the changes to take effect.
For more guidance, please refer to https://zcusa.951200.xyz/en-us/iis/extensions/url-rewrite-module/request-blocking-rule-template.
This should block any requests to the specified URL. If you encounter any issues, make sure other rules are not conflicting with this one and check the Failed Request Tracing logs for more details.
In addition, here is a case study similar to your needs for your reference: https://zcusa.951200.xyz/en-us/answers/questions/870061/blocking-a-specific-url-using-iis-url-rewrite.
Should you need more help on this, you can feel free to post back.
If the answer is helpful, please click on ACCEPT ANSWER as it could help other members of the Microsoft Q&A community who have similar questions and are looking for solutions.
Thank you for your support and understanding.
Best Wishes,
Alex Zhang
Hello, @Athique Nihal,
Just wanted to check if the answer shared above helped. If it helped, then would request you to please "Accept the answer" as it would be helpful to others in the community as well.
Best Wishes,
Alex Zhang