Hello, I have an ASP.NET application in my website in virtual folder A. This folder contains the application itself. I also have a data virtual directory B which contains data that can be seen by authenticated users. I've implemented forms authentication (with application in folder A) in...more >>

I am using Windows 2003 Server with IIS and STS. I have a W2K3 domain, DNS is on one of the domain controllers. I have my web server in the same domain and different webs in IIS/STS set up so that each one is accesed by a host header. (ie; sales.company.com goes to the sales website, hr.compa...more >>

Got new Exchange 2003 all working internal and external but cannot get OWA to run either internally or externally. Get Local Security Authority cannot be contacted meesage when I try to login to account. I do get prompted for username and pwd. Any ideas where to look, cannot find anything o...more >>

I have installed IIS on an XP Pro machine within a small LAN. I have created a Virtual Site but I cannot hit it from machines other than the host. On the host machine the pages display and work fine, but from other machines I get "You are authorised to view the page" or "Page cannot be dis...more >>

Hi, Is it possible to authentificate users across a domain with iis? Because I have some iis 6.0 servers under win 2003 and a lot of web applications on each server. When a user is redirected into an application from server x to y he has to reauthentifacte. What can i do to propagate login...more >>

Recently, I found the following message from event log: ---------------------------------------------- The description for Event ID ( 1 ) in Source ( Apache Jakarta Connector2 ) cannot be found. The local computer may not have the necessary registry information or message DLL files to displa...more >>

I succeeded in seting up my FTP server within Windows 2003 as described in the following article: http://support.microsoft.com/default.aspx?scid=kb;en-us;323384 My question is How can I setup an user and which permissions do I need to give the user for accessing the FTP Server? How can ...more >>

Hi! I am completely confused: there are several KB-articles that discribe how to give NTFS permissions on the different msado15.dlls for IWAM+IUSR to have db access in IIS. Now my problem is to understand, why IIS can run without giving these permissions?? enabling file Audit AND che...more >>

We have a situation in whch we have 3 IIS 6.0 servers. Each has it's own IP and SSL cert. 1 is on a box and the other 2 are virtual servers on a second box. When ever a person goes between these addresses in a new browser session they get challenged for their credentials. We would like to pro...more >>

Currently our user base is small and someone emails us to have acces to restrictied documents in a folder, we create the user name and password (using Windows built-in security) and then mail it back to them. We now want users to be able to create their own names and passwords. What is the...more >>

I am having an argument with someone right now about permissions and the anonymous IUSER. This person has insisted that I give the IUSER write permissions to a web site he is developing so that he can get his ASP code to work. I have compromised by creating a subdirectory for him. My ideal ...more >>

I'm looking at setting up new security. Right now the whole website is open except a few directories which use an application (ASP.NET). These applications are protected with FORM AUTH. Now...I'm thinking I would like to protect other directories that contain static content and some that ...more >>

Hi, I have one web application requires Internet users write permission to the file directories of web servers, I want to harden IIS6 properly to minimum the security breaches, anyone can give any advises? Thanx!...more >>

We've installed a certificate and have SSL working fine on our web server, but we'd like to have it on our developer computers as well. Do we really have to buy separate certificates for each developer? Is there an easier and/or cheaper way to get https working in a developer environment whe...more >>

Hi all I have a question about my IIS installation, in fact I have 2 web servers on Windows 2003. I have basic authentication on both, I need to check only 1 time User & Password. When a user try to connect to my https://webserver1 he needs to give User info. On this site we have a link (ht...more >>

Hi, I'm looking for a way how to hide all URL in my web browser. i don't want to use the frame for that... for example : my welcome page is : www.test.com (thanks IIS settings regarding first page), but after if i place the mouse cursor on "tasks" link, status bar shown me :www.test....more >>

Per MS recommendations, attempting to run IIS6 DefaultAppPool with "Network Service" identity. For the 1st app I've installed on IIS6, that's resulting in "Service Unavailable" error (the server is not a domain controller). Following other docs found on this topic have not resolved the proble...more >>

Can someone point me to documentation regarding installing and using certificates with IIS thank you for your help john ...more >>

Just brought up W2003 server (IIS6) installed 1st site/.Net app. When the DefaultAppPool Identity is set to Local System, no problem (IIS 5 Isoloation also works); however, setting the identity to Network Service or IWAM acct results in "Service Unavailable" error. I searched all available MS doc...more >>

I need to install SSL certificates for my OWA1 and OWA2 servers, that will be configured as NLB. As far as I know, I understand that I need to generate a .CSR from both WIn2003 boxes and submit them to Verisign. If the above procedure is correct, I go to the Windows 2003 and when I click t...more >>

We have a few sub webs running on IIS. We've discovered that some can be accessed using ftp://domain/html/subwebname anonymously and some cannot. We DO NOT want ANY webs to be accessed using FTP (expecially anonymously). I can't see any FTP services showing up in the MMC that relate to any ...more >>

I have a page that was done in asp. about once a week this page which sits behind a secured site when accessed from a site that's not secured is not available. I try to restart the site, www service. ftp service, without any success. It seems that the only way to get this site back up is to...more >>

I'm investigating on the security implications of the parent path. Reading some TechNet article I get that this check influence only the behavour of the server.matpath function and the include addressing. So, with this check clear you can still send request to IIS using ".." (see: http://supp...more >>

I have a Windows 2003 Enterprise server running as my webserver and I can't figured out how to allow it to let me download documents with the wpd extention. pdf, doc, txt, zip all work fine but when I have the wpd extention it says it can't find it. Even when I turn on directory browsing and ri...more >>

Hi all, I cann't browse any asp page through IIS after i installed ISA Server however i changed the port for my website. may anyone help me please. thanks ...more >>