limiting access to files with asp.net is there any way i can make a file only accessible to certain users of my website? my files are to large to copy to a temp directory and they are of many types, .exe .xsl .xml etc. i want an href to each file but only allow users who have the right login-i...more >>

None of the CGI apps (Perl and ASP) on my site can perform system commands (dir, del, copy, etc.) for most users. I am running IIS 6.0 on Windows Server 2003. I have an app pool set up for the virtual directories that need this functionality. The identity for that pool is local system. Eac...more >>

I have two machines with 2k3, I one I setup Stand-alone CA and in the other one WEB page, I am requesting web cert. from CA , and then I am installing it, and then from another Comp. running XP I am trying to request Client cert. where I install this cert, and I go and map this cert on IIS to lo...more >>

Hi there, A question that probably has been here a thousand times. I'm running IIS 6.0 and will be using it for development of dynamic content on Professional 64-bit. I read: http://www.microsoft.com/technet/security/tools/urlscan.mspx but am still not sure if I should use it. Basically can a...more >>

Running an active/passive cluster with a shared drive cluster resource S that holds the web sites pages. When Server 1 is serving pages IUSer_Server1 runs the site When The cluster rolls and Server 2 is serving the pages IUSER_Server2 is used. THe trouble is that the ACLS on the Shared S D...more >>

I currently use a self-signed cert on my 2003 server w/ exchange for OWA and RPC over HTTP. Works great! ... now my client has wireless phones that cannot use the self-signed cert. Is there a way to request a cert from a "real" CA without having to remove the current one (which will bre...more >>

Every now and then I receive a 518 (URL authorization store cannot be opened) error. All ACL's are correct on the AzPolicy.xml file. Based on a MS TechCenter article, I ran the File Monitor utility and it reports a "Sharing Violation" on the AxPolicy.xml file each time I receive this error. ...more >>

I have a script written in ASP/VBScript running on Windows 2003/IIS6. The Script uses CDO to send an email message. When I use the Default Application pool, using "Network Service" as the Identity, CDO works great. However, when I change the application pool to one that uses a configurable i...more >>

RE: Windows 2003 Server SP1 / IIS 6.0 I can successfully run two a perl script files from my default website but I can not run the same files from another website. I have verified that the permissions for the wwwroot and cgi-bin sub folders in both the ‘Default’ and ‘mywebsite’ are...more >>

We have a Tomcat application in which each request is routed via IIS (isapi-redirect) IIS populates a parameter with the active directory account name. This is then available in Tomcat to authenticate via a call to Active Directory. Without the account name I cannot see how we can authen...more >>

Is there any way to avoid having to put in the domain name in front of the username (domainame\username) when authenticating in the process of accessing a webpage running on IIS? All of our users have their accounts belonging to the same domain and we don't anticipate it changing anytime ...more >>

Hi I have only found one other post on this topic and that was for IIS 4.0 I am running IIS 6.0 on a windows 2003 small business server box. We host a website to which our customers need a login to enter. These logins are set up as domain logins on the sbs box. We would like these custome...more >>

I have set up a form and can not make it so users can enter dat without getting propted for username and password works fine if I athenticate.(not ideal) Gurus please help ...more >>

I am using a custom authentication ISAPI filter/extension in conjunction with using an html form page to authenticate users. As part of this process I am trying to understand how IIS handles authentication on subsequent round trips to the server. Specifically, how does IIS handle the user im...more >>

I found in my servers IIS this logs line PUT /page.htm - 200 Microsoft+Data+Access+Internet+Publishing+Provider+DAV+1.1 I searched and found this http://lists.grok.org.uk/pipermail/full-disclosure/2004-December/030467.html I don't have install FrontPage. What happend? Tks in advanced....more >>

I am getting the following error when I try to access a certain .jsp page: HTTP/1.1 401 Access Denied Server: Microsoft-IIS/5.0 Date: Mon, 10 Oct 2005 18:26:39 GMT WWW-Authenticate: NTLM Connection: close Content-Length: 7836 Content-Type: text/html The page is set up for ...more >>

We have recently installed a security certificate and are recieving message prompts that the site is displaying mixed content. Without configuring IIS to disable these prompts can we eliminate these messages by separating secure content from pages that do not need security?...more >>

When I try to log in remotely to either a client or server, I get a "Page Not Found," error UNLESS I check the "I'm using a public or shared computer," box. Whether pcTpye=clients or servers does not matter. I have tried cleaning out cookies (as there's some evidence of a cookie issue in the e...more >>

I installed IIS 6 on W2K3 server and enabled asp and asp.net in web service extentions. I created a simple test.asp that will display "hello world" message and copied it to c:\inetpub\wwwroot. Now, http://myserver loads the iisstart.htm page but http://myserver/test.asp doesn't load. I hav...more >>