Add the element ExcludedRolesToLogin tp the SiteSettings.config and specify comma separate which roles are not allowed to login to the panel. e.g.: <ExcludedRolesToLogin>Administrator,Reseller</ExcludedRolesToLogin> By doing this you can eliminate the attack surface by publishing the portal twice. One for the organization administrators and an internal one for the adminsitrators and reseller admins |
||
---|---|---|
.. | ||
Ecommerce_Modules.ascx.resx | ||
Ecommerce_Pages.ascx.resx | ||
Ecommerce_SharedResources.ascx.resx | ||
WebsitePanel_Modules.ascx.resx | ||
WebsitePanel_Pages.ascx.resx | ||
WebsitePanel_SharedResources.ascx.resx |