On the recommendation of MOM2005 I disabled the IIS parent paths in IIS and now everytime I go to our OWA page I get the directory listing of everyone's mailbox. I went in and reenabled parent paths but the damage is already done. I cannot figure this out. Thanks for the help! Matt...more >>

Hello All, We have multiple web hosting customers on IIS 6, Windows Server 2003 Enterprise edition.We would like to control bandwidth per web site on a monthly basis.For instance "www.x.com" should be allowed only 20 MB total bandwidth in a month.Please do not confuse with disk quota, we are ...more >>

Hi everybody, I have the following scenario. - One W2K Domaincontroller hosting an AD Service (Domain "foo") - One W2K Webserver with IIS 5 The webserver is not a member of the Domain "foo". Am I still able to use Integrated Authentication? If yes, how do I tell the IIS which domain to u...more >>

I am getting the following error in the event logs when my server reboots nightly. Event Type: Error Event Source: Service Control Manager Event Category: None Event ID: 7024 Date: 5/27/2005 Time: 3:05:18 AM User: N/A Computer: test01 Description: The Certificate Services service te...more >>

I have a secure server certificate that I use on one computer with IIS on XP pro. I recently got a new computer and was wondering if there was a way to transfer the certificate from the old computer to the new computer and into IIS. I have tried but IIS wont accept it. I have the ..cer and the ....more >>

We have a Windows 2000 SP4 machine recently upgrade to Windows 2003 and then SP1. After that, we rename the machine and we got impersonate problem. We are running IIS 5 Isolation Mode on the Web Server. For all virtual directories, we set the anonymous user to a domain account which is the adm...more >>

Hello! I moved a website to one server to another (Win NT 4 to Win 2000) but on the Win2000 server a Username/Password input dialog appears when tring to access th website (main default.asp). On all files "Everyone" has full access. Anonymous access is configured with "IUSR_xxx" user as it i...more >>

Hi I have an access app using the ms transfer control to post to a web site. The pc is a win xp sp2 connected to a sbs 2003 (with isa200). The itc posts fine when run on a pre-winxp sp2 machine but not on the only xp sp2 machine we have on the network. MS support has told me that it is beca...more >>

We have some users of a .NET application getting HTTP 400 on a web app with Integrated Windows Security. Switching the setting back to allow anonymous access fixes the problem. It seems the problem is with the user account in the windows domain. Is there a way we can check to see what's w...more >>

I've been at this one for several days now, checking everything I can find. I've posted in the SUS group, but now I think it's more an IIS specific issue. My IIS 6 in Server 2003 is hosting only SUS, no other websites. It used to work fine with Automatic Updates, but something changed that is...more >>

Hi, I'm wondering if anyone can help me out with a problem I'm facing. I need to have conditional code on a web page (asp) to show who the site authenticating Certificate Authority is. Of course the site is set up to use SSL. I've examined all IIS Server Variables (Request.ServerVariab...more >>

I've seen it, I just don't remember where, the option to "allow IIS to control the anonymous user password" option is. -- -Joe...more >>

I installed SUS which ran the iis lockdown tool and it stopped my FTP service. I tried to restart it but reports service did not respond. How do I get it to work again? Also, I checked the C:\WINNT\system32\inetsrv\urlscan folder and the file urlscan.exe is no where to be found. Why is ...more >>

Hi, I am in the process of configuring my IIS server and have some questions. OS will be Win2k3 and will be hosting ASP.Net applications from the box. My server currently has two drive configurations Raid-1 and Raid-5. I have placed the OS in the Raid-1 configuration and will place IIS on the ...more >>

How do i mask the Server Header is IIS6 without using URLSCan 2.5. Is there a registry entry or a metabase property change that will do this?...more >>

Hello all. I have Windows 2003 Server who work like Domain Controler. On a DC I use IIS 6.0 because I have internel web site. This Web site must access from domain users via internal network and therefore I set on IIS option "Integrated Windows authentication" for better Security. Actually prob...more >>

Hi I have a problem with implementing https in iis 6.0 I have installed a certificate on my web server iis 6.0 windows 2003 std SP1 and commerce server 2002 with other ms tools. I try to verify if this certificate have any problem but seems good , a private key is present and a certific...more >>

I have IIS serving static content and asp’s from IIS6 on Win2003 Server. The site uses Integrated Security with the server on a 2003 server domain. Clients are on a different domain and enter login information in the browser pop-up. The behaviour I get is as follows …. - All domain ...more >>

Sometimes (wery rarely) the following error occurs on trying to access the ASP (the same ASP file in all cases). ========================================== FW-1 at prb001002: Unauthorized to access the document. Authorization is needed for FW-1 ========================================== This e...more >>

SMTP Relaying Help I am trying to configure an exchange server to relay email, and it seems that all I get in response is the following: Action: failed Status: 5.7.1 Diagnostic-Code: smtp;550 5.7.1 Unable to relay for user@domain.com Can anyone help me with this. ...more >>

as stated, i am a complete newb to AD and IIS. but, my boss has asked me to look into bypassing windows updates and using a push technology. so, i've got this w2k3 server test box i just built and installed IIS so i could install SUS. everthing is hunky-dory except that when i go to the susadm...more >>

Hello, I am trying to setup a Wildcard Server Certificate on my web server. I have obtained the certificates and installed them. Each of these sites is using host headers and I need to find the site identifier number. How can I find this number? -- Thanks for your time, Mizer...more >>

i have disabled anonymous access on a directory and require integrated windows authentication and basic. The users are prompted for a domain, eventhough I have entered a default domain and realm. I really need the domain to resolve to the default value. Any thoughts? ...more >>

Hi, This problem is driving me nuts. - I have set up an IIS 6.0 application (in perl/cgi) and put it into a virtual directory (actually it's a SOAP webservice) - Since this app does AD domain administration tasks, it must run under a "Domain Admin" account. - Users accessing it are not...more >>

Hi, I am hoping that someone may be able to help me resolve the following issue when trying at authentication across servers and domains. Each of the client computers will be a member of one domain (Domain_A) and each of the servers will be a member of a second domain (Domain_B). The use...more >>

I hope someone can help - I am getting desperate! I have promised to do some work for someone developing an ASP.NET application. I have VS Studio 2002 installed on my pc which is running XP-Pro (and therefore IIs 5.1) and have installed .Net framework v1.1.4322. I canot create a new web p...more >>

Hi, I have IIS 6 on 2003 which is registered on the domain. To run an ASP.NET Application with a domain account, I set the SPNs as follows; setspn -A HTTP/servername domain\newaccountname setspn -A HTTP/servername.domain.com domain\newaccountname setspn -A HTTPS/servername domain\ne...more >>

hi, running iis 6 on win 2003server. i cannot use the anonymous user. only integrated windows authentication allow users from "administrators group" to run aspx file. all users can browse directory. browsing work in anonymous mode and also in integrated windows authentication. any clue ? th...more >>

I have two Windows Server 2003 machines running IIS. Both use anonymous login, both use the default anonymous user accounts, both are Domain Controllers. The problem is that one allows anonymous login without issue, while the other prompts for a user name and password. If you type in iusr_com...more >>

Hi, Is there a IIS 6.0 lock down tool for Windows 2003 Server? If there is, where would it be located. Thanks. Mitch...more >>

Hi there, Is it possilbe to redirect error pages (401, 404, etc), to a custom page using ASP/VBScript. I'd rather not use the custom errors tab in IIS as we have more than one web site running on the IIS server. Thanks very much/......more >>

Hi, I want to run ISAPI application in medium(pooled) or High(Isolated) level of application protection in IIS 5.0. When i run it in low level it runs without any problem. But when i run it in medium or high level only alternate requests will be served properly. For every other alternate...more >>

Hi, I have discovered an odd problem when using window.open from an IE window which was opened with ShowModalDialog. You would expect the new window to inherit the cookies from the same IE session which created the modal window, but in some cases that doesn't happen. It may get the coooki...more >>

Hi! I have found a problem with non standard url it`s: http://server/doc_name.asp?param=value <- it works fine but http://server/doc_namse.asp/param/value <- IIS looks for such a server/doc_namse.asp/param/value document and it doesn`t find it. How to make IIS to execute d...more >>

I am getting ready to upgrade our domain from Windows 2000 to Windows 2003. I have a web server that is running Windows 2000 and is currently a DC which will not be upgraded. The Windows 2000 web server hosts our Intranet site and uses Integrated Windows Authentication to validate users. I p...more >>

Why is prompting for ID/PW random? Server: Windows 2000, SP4, IIS 5.0, teamshare and SQL 2000. sub-site (Default web/cr) has Basic Authentication Checked, only. NTFS security for /cr folder allows Authenticated Users, Administrators, System and denys Anonymous Most of the time a user i...more >>

Hello: I am bringing a new IIS 6.0 server online with Windows 2003 and SP1. SP1 has the new Windows Firewall in it. After the server came online I tried to access one of its sites. I couldn't access the site and then noticed the Windows Firewall was turned on. After turning it off every...more >>

I am probably going to misquote the microsoft rep I talked to (it was months ago), but here it goes: "In (mass vhost/webhosting/isp) type scenarios you should segregate all web applications that need high security by configuring custom App Pool Identities for each. There is a 'return self' fu...more >>

Hi there, This is a carry on from my Sessions/Cookies post... This is the setup I have: IIS running on W2K3 - IISSERVER Exchange 2003 - MAILSERVER I have an internal web site running on the IIS server which requires users to authenticate with their AD username/password. On this websit...more >>

how do you allow .cfg and .ini files in a web directory . .IIS 6 gives a 404 error . but you can change the extension and access them . .it is NOT a path problem . it appears as some sort of security measure. Can someone please tell me how to allow these so I can get things working like they d...more >>

Hi, I have an IIS 6 on Win2003 registered on a domain. I'm running the following applications on this machine, - an ASP.NET Web App - Reporting Services Interface - Reporting Services Server All of the applications above use Windows Integrated Security. The ASP.NET application work...more >>

I am having problems serving a file through http called myFile.vb_ I want to launch the file, but make it unknown to the browser. But it has to be known as a vb script file, because it launch some local file access functionality. Weird, I know. Does anyone know how to teach IIS 6.0 to exe...more >>

Hi there, I have an internal web site running in a Windows Server 2003 Active Directory domain. I've set it to NOT allow annonymous access so that users are requested for their username/password when they access it. I've also got a logoff button on the website which I want to do exactly th...more >>

I'm having a problem with IIS 6.0. I'm trying to restrict certain directories on our web server to certain domain users and it's not working properly. I'm using Basic Auth with anonymous access disabled. For example: I have a directory called "admin" and I've set the NTFS permissions on...more >>

Hi, I just setup an IIS 6 server on one of the member server in my AD domain and created a virtual directory. I would like to be able to use webfolder and IE to access this virtual directory However, I can't seem to get the authentication working properly. The only way I can get access...more >>

I have an IIS 6.0 web server set up using Integrated auth. When clients who are part of the domain go to the site, SOME of them get this result: When they first hit the web page, they get a page cannot be found error and if they hit refresh, it works EVERY time. I have used AUTHDAIG to get...more >>

With "passport" enabled on the IIS server, is it possible to limit to a specific set of passport users only instead of the whole community? Is it possible with just ISAPI extensions? ...more >>

How/where do I install Certification Authority? It shows up in my Administrative Tools folder but when I try to run it I get this error: The specified service does not exist as an installed service. 0x424(1060) I looked in Add/Remove Programs under Windows and don't see it listed anywhere. ...more >>

hi I have a virtual directory under my website on a W2003 server (std) box. It points to a folder, we set up for webdav connection/authentication. I turned on webdav (obviously), and my XP users can connect without problem. They can read/write files, etc. My Windows 2000 users get back...more >>

Hi eveyone, If anyone could advise on the following I would be truly greatful: I have a fairly standard set up. An IIS 5.1 website set up with anonymous access allowed in all areas of the site but a secure subdirectory called /secure/ I am using windows forms authentication and this is ...more >>