Update - TMG Reporter 3.0 now supports private report sharing. This enables you to configure full access for admins, while only providing access to reports for managers and so on. Please see our article (and video) on configuring Private Report Sharing here.
You can restrict access to the Fastvue TMG Reporter site using Windows Authentication and Authorization rules in IIS.
- Go into IIS Manager, and select the Fastvue TMG Reporter site or virtual directory.
- Ensure 'Features' view is selected at the bottom of the middle pane and Double-click Authentication.
- Right click 'Windows Authentication' and select Enable. (If Windows Authentication is not in the list, you need to add the 'Windows Authentication' Role Service in Server Manager | Web Server (IIS) | Role Services).
- Select the Fastvue site or virtual directory again to return to the IIS features view, then double-click 'Authorization Rules' and add your allow and deny rules. (If Authorization Rules is not in the list, you need to add the 'URL Authorization' Role Service in Server Manager | Web Server (IIS) | Role Services).
It may also be a good idea to add secure bindings to the site and selecting Require SSL in IIS's SSL Settings.
For more information on securing the Fastvue TMG Reporter site please see: How To Secure and Publish the Fastvue TMG Reporter Website
To secure the Fastvue Reporter site to administrators, and allow others to simply view reports, please see our article on Securing Fastvue Reporter for Private Report Sharing.