The value for the host header site is testsite.
Users aren't having to enter anything to access the site. They are never
prompted to present credentials.
The content for the second web site is in a totally different directory
structure and is no where near the directory structure of the original web
site.
I stopped the default web site to see how it would impact testsite. It had
no impact on the site at all. All users across the domain can still access
the site.
I can even look at the effective permission on a user and they show that the
particular user has no NTFS rights to the testsite structure, yet the user
can access the site without being prompted for credentials.
[quoted text, click to view] "Eric Rodriguez" wrote:
> What's the value for the host header and what are the users typing to gain
> access to the site? Where is the content for the site located? Is it the
> same location that the Default Website points at? Does the IUSR account
> still have read access to the content you are trying to restrict?
>
> A good test might be to stop the default site, only leaving "testsite"
> running, and see if the anonymous access is still allowed, or if your users
> can get any response at all.
>
> Another thing to check is if they are browsing directly to a v-dir or file
> that DOES allow anonymous access.
>
> HTH,
>
> ~Eric
>
> This posting is provided "AS IS" with no warranties, and confers no rights.
> You assume all risk for your use. © 2005 Microsoft Corporation. All rights
> reserved.
>
Yes, users are successfully authenticating on the second site. I'm able to
confirm this in the security logs.
[quoted text, click to view] "Jeff Cochran" wrote:
> On Sat, 22 Jan 2005 20:23:02 -0800, "Scott Dorsett"
> <highway1@news.postalias> wrote:
>
> >The value for the host header site is testsite.
> >Users aren't having to enter anything to access the site. They are never
> >prompted to present credentials.
> >
> >The content for the second web site is in a totally different directory
> >structure and is no where near the directory structure of the original web
> >site.
> >
> >I stopped the default web site to see how it would impact testsite. It had
> >no impact on the site at all. All users across the domain can still access
> >the site.
> >
> >I can even look at the effective permission on a user and they show that the
> >particular user has no NTFS rights to the testsite structure, yet the user
> >can access the site without being prompted for credentials.
>
> Are users authenticating on the second site? To a Windows account?
>
> Jeff
>
>
> >"Eric Rodriguez" wrote:
> >
> >> What's the value for the host header and what are the users typing to gain
> >> access to the site? Where is the content for the site located? Is it the
> >> same location that the Default Website points at? Does the IUSR account
> >> still have read access to the content you are trying to restrict?
> >>
> >> A good test might be to stop the default site, only leaving "testsite"
> >> running, and see if the anonymous access is still allowed, or if your users
> >> can get any response at all.
> >>
> >> Another thing to check is if they are browsing directly to a v-dir or file
> >> that DOES allow anonymous access.
> >>
> >> HTH,
> >>
> >> ~Eric
> >>
> >> This posting is provided "AS IS" with no warranties, and confers no rights.
> >> You assume all risk for your use. © 2005 Microsoft Corporation. All rights
> >> reserved.
> >>
> >>
>
On Sat, 22 Jan 2005 20:23:02 -0800, "Scott Dorsett"
[quoted text, click to view] <highway1@news.postalias> wrote:
>The value for the host header site is testsite.
>Users aren't having to enter anything to access the site. They are never
>prompted to present credentials.
>
>The content for the second web site is in a totally different directory
>structure and is no where near the directory structure of the original web
>site.
>
>I stopped the default web site to see how it would impact testsite. It had
>no impact on the site at all. All users across the domain can still access
>the site.
>
>I can even look at the effective permission on a user and they show that the
>particular user has no NTFS rights to the testsite structure, yet the user
>can access the site without being prompted for credentials.
Are users authenticating on the second site? To a Windows account?
Jeff
[quoted text, click to view] >"Eric Rodriguez" wrote:
>
>> What's the value for the host header and what are the users typing to gain
>> access to the site? Where is the content for the site located? Is it the
>> same location that the Default Website points at? Does the IUSR account
>> still have read access to the content you are trying to restrict?
>>
>> A good test might be to stop the default site, only leaving "testsite"
>> running, and see if the anonymous access is still allowed, or if your users
>> can get any response at all.
>>
>> Another thing to check is if they are browsing directly to a v-dir or file
>> that DOES allow anonymous access.
>>
>> HTH,
>>
>> ~Eric
>>
>> This posting is provided "AS IS" with no warranties, and confers no rights.
>> You assume all risk for your use. © 2005 Microsoft Corporation. All rights
>> reserved.
>>
>>
Don't see what you're looking for? Try a search.
