I have a 2003Server with IIS6.0 on our company intranet and have migrated some websites from IIS5 on W2k to this server. I get the above error along with 'Cannot find server or DNS error' at the bottom of the page. Everyone has permissions and the service extension for Active Server Pages is s...more >>

Oneof our developers wants to give Internet guest account (IUSR) and IIS Process Account (IWAM) accounts full access to some of the folders on a windows 2000 advanced server. Is this a good practice? Please let me know....more >>

I have just set up a sharepoint portal on my server, http://companyweb, I am just asking if there is any way to skip the signing in process when you first arrive at the website and instead have it getting the security information from the already logged on Windows Account? Thank you in adv...more >>

We have multiple IIS servers throughout our domain. We are constantly running into the issue where the GPO overwrites the local account setting, which is default by design. MS Article 275167 states 3 resolutions. Option one is to run iisreset, which our OPS dept is tired of. Option two...more >>

I'm trying to lock down the connection strings on our web servers and opted to go with .UDL files because they will be accessible from both Classic ASP and ASP.NET pages. They will also be stored outside of the webroot which should make them easier to restrict permissions in this environment an...more >>

Hello NG, I am running IIS on Win2k Adv Server + SP4 + .Net framework 1.1 my problem is as following -- I have default website and some other sites on the same iis (with diff port numbers) We have a domain but this server is not a part of any domain but on same network (intranet) When...more >>

Hi there, Can anyone give me a quick tutorial on creating a self-signed client certificate in win2K3 / IIS6, please? I have just been handed a project with a dealine of uesterday that requires client certificate authentication. Any help is greatfully accepted. TIA Marc....more >>

Hi there everyone I installed IIS on a server and when trying to to see if the server is started I get the following error. "Unexpected error 0x8ffe2740 occured". Any ideas? Granville ...more >>

Win2003, IIS6. Under "Internet Information Services/Web Sites" snap-in, I've created a "Mysite" site. If I click "Properties", "Web Site" tab, I see the following information: TCP Port=8080 SSL=443 I published this site via ISA 2004. In ISA I setup a web listener to "listen on port ...more >>

Folks, Maybe someone can help me out here. I'm working on an ASP web application on a w2k server with iis 5. The application dynamically creates folders and uses adsi to create local windows groups that have access to these folders. Because the group 'authenticated users' is member of one ...more >>

HI Guys. I hope you can help me out! I've poseted a similar question on "inetserver.asp.general" a couple of days ago, but I think I'm gonna have better luck here since it's more of a security issue, than a programming issue... Here's the scenario: 2 Windows 2000 servers and one workst...more >>

Hi - i recently used the vulnerability assessment service for our web server & the following was reported by the system "The remote Web server seems to allow any anonymous user to use it as a reverse proxy. This may expose internal services to potential mapping and, henceforth, compromise." ...more >>

I have a Windows2003 server with IIS6.0. However, none of the classic ASP pages are running. I receive 401.3 Access Denied error message. I made sure the internet guest account has read permission (I actually give everyone read permission), and I made sure Active Server Pages under Server Exte...more >>

I've installed a trial cerificate from verisign on my IIS 5. Now when I connect to the server using a browser with http://... it says that the page must be viewed over a secure channel. If I connect with https://... it says that the page cannot be displayed. When I turn off SSL in IIS a...more >>

I am running a w2K ad, And I have just setup a W2003 IIS 6 server that I need to authenticate against my ad. This is working on the older IIS 5 server I am replacing. It is logged into the AD. The strange thing is that if I type in the IP address, I can authenticate, but using the DNS name...more >>

I am writing security policies for IIS 6.0 (Windows 2003 Server) and noticed that IIS tried to write MBSchExt.xml file. Unfortunately, I could not look in the file since the IPS software prevented from writing this file. I cannot find any information on MBSchExt.xml, is this a legitimate IIS...more >>

Server: Windows 2003 Standard with Exchange 2003 I installed an SSL certificate on my Exchange site in IIS and checked "require SSL". Of course this made it impossible to reach the site on port 80 so I changed the TCP port to 8080 and created another site to simply forward the port 80 request ...more >>

Please help ! I build a server from scratch, installed Windows Server 2000 (Service Pack 4), IIS the . NET Framework (version 1.1) and Visual Studio .NET 2003 on it. I used Windows Integrated Security by means of setting up users on Active Directory that is referenced from K2 . NET softwar...more >>

i want to implement authorization with windows authentication and don't have the slightest clue of how to do this implementation. the basic windows authentication for this .NET application is already setup. my problem lies within my inability to manipulate the username captured in the authenti...more >>

We currently have a public IIS6 server in our DMZ. It's been made a domain member to allow Basic Authentication against our AD for a number of confidential documents - all within a single web - on the server. (We don't want to maintain a separate user database.) I can make this marginally mor...more >>

I have a directory under my wwwroot folder that I would like accessible over the web where my internal domain users do NOT have to enter credentials. But any user not on our domain must enter credentials. That way all my internal users do not have to enter a username/pwd everytime they acces...more >>

I am having troubles in trying to remove the password from my websites. The websites are being run through IIS. I want to make it so that the password box doesn't appear anymore and it doesn't need you to log in. What can i do??? -- Phill...more >>

Please excuse my loose expression but I am not IIS & PKI specialist. I need to establish SSL with root certificate from local CA. To do so, I need to install the root certificate chain on the server, so the client certificates can be accepted. I have the der encoded certificates in *=2Eder files...more >>

Hi, Something confusing me slightly, when a user wants to run .aspx pages etc I was under the impression that I could just grant the ASPNET user full rights or read to the website that needed it. This doesn’t seem to work, if I grant the everyone group access the .aspx pages they start wo...more >>

I need a SSL certificate from a non-trusted CA for testing purposes. After processing steps on IIS to get the .csr generated, which tool can I use to process such .csr and get a .cer ? Someone a while back told me about an IIS resource kit tool that could do this, but I can't remember. ...more >>

I just setup a 2003 ent server. How do I get .Net installed so I can run asmx, aspx, asax, etc?...more >>

Is there a limitation to the number of different users that can share one account (username & password) to logon to a website simultaneously? This is on an https secure site. I've already ruled-out using anonymous access. Thanks, Bryan ...more >>

Hi I have a directory under the route of a web site which has anonymous access disabled and basic authentication selected. The folder has Read & Execute, List Folder Contents and Read permissions for the user I want to log on via http. It just doesn't work. I get a 401.3 web page error. ...more >>

Hi, I configured 2 Virtual servers with different IPs but when I tried to configured the IPs on the SSL portion of the dialog box (the one that is on the properties of the web site, clicking Advance - I gess - in the General tab, where you have - by default - as IP *All Unassigned*) I notic...more >>

I want for example http://a.domain.com http://b.domain.com http://c.domain.com I have IIS I want to redirect each of those adresses to a differente application on the IIS Server. What can I do. As far as I know, we have 1 router, two firewalls and internally there is the IIS server th...more >>

We have a Windows 2003 DC (Active Directory) and an IIS6 Webserver to host our intranet. We have 3 forests, however we would like all users in DOMAIN_A to simply 'pass' their credentials to IIS6 without having to type them, so they can get to restricted areas of the site without the need fo...more >>

How do I resynchronize the password of the IUSR account on a Windows 2003 server? -- Mike Gasperino Sr. Software Developer office: 919-807-2310 **************************************************************************** E-mail correspondence to and from this address may be subject to t...more >>

Hi. I wish to use Windows Integrated Authentication in IIS to authenticate users logging on. The problem is that the web server is a standalone server located in DMZ, and I wish to authenticate using domain accounts. Am I right to assume that this is not possible, as long as the web serv...more >>

My vulnerability scanner is flagging my OWA website because of the MS IIS Internal IP Address/Hostname Vulnerability. I have issued the following command "adsutil set w3svc/UseHostName True" and rebooted the server. The vulnerability scan no longer picks up the internal IP address. However, it...more >>

Hi, How can I tell if URLscan is installed on W2K Server? Thanks, Peter...more >>

Hi. Just setup my Windows 2003 server as an App Server running IIS 6.0 for use with ASP.NET apps and other web stuff. After configuring IIS websites with IP addresses and setting permissions through IIS and NTFS for access to my ASP apps, I cannot access my websites using Anonymous access but ...more >>

Any one had the problem that after installing SP1 that IIS presents the user with a login window and if you cancel you get an 401.3 Unauthorized: Access is denied... Everything was working just fine until Windows Server 2003 SP1 was installed. ...more >>

I have a customer requirement where they would like to alllow certain users to use NTLM as they enter our secure site while others would login through a web form. The desired action would be to check the interactive user's credentials upon entry to the site then compare it to an ACL we have. If ...more >>

So I have a graphics person who wants anonymous ftp for print shops and external consultants to upload graphics too big to email. Ok, easy enough, I went out and got Cerberus and put it on our spare DMZ server and set up anon access. A GUI client, a short sheet on how to set up a profile, log ...more >>

I'm trying to secure the "http trace" vulnerability on my web server (xforce article 11149). I have applied url scan and disabled the appropriate verbs. My question is, I'd like to test it to ensure that in fact tracing is disabled. Is there a command I can issue against my web server to te...more >>

Hi all, I created a web folder (using WebDAV in IIS 6). I assigned NTFS full control to a specified local group of users. So, I can access to the web folder using users credentials. But, when I add a new user to the group, I've to wait about 20 minutes until I can access using the creden...more >>

I'm posting this to save some other poor sod the pain I went through... I have IIS6 running on WinServer2003 SP1. I moved over several existing websites from an IIS5.1 box running Win2K SP4 by copying the directories, and then using the New Website wizard in IIS6 to create the websites. You ...more >>

I have deleted the localstart.asp file from my web server because of the vulnerablity associated with a brute force attack on localstart.asp. This server is my OWA server. Everything works fine but, my vulnerability scans continue to show the localstart.asp vulnerability. When I go to https:...more >>

I am out of options on trying to get this to work. I have a site that sits on our development box in a vlan. No matter what I do I can't access the site as an anonymous user - it just prompts me with a challenge response. If I cancel and try to access the site, my menu control does not render ...more >>

Hello all, using windows 2000 pro and IIS 5. What I would like to do is set up an error message so when someone clicks on a link that begins with https they would be directed to a page I have made that states that this page is not available at this time, try again later. Any suggestions? T...more >>

I have built a java applet that creates and writes user input into text files. I'm running Windows Server 2003, and I do not know how to set the permissions of the website in IIS to allow any user to save the data in a file on the server through the applet. Any help will be greatly apprecia...more >>

Strange issue: We have a Mixed Mode, Windows 2003-based domain (still have NT4 BDCs). Users that have read/list/execute permissions to a website are in a Global Group and that GG is given NTFS permissions to the site. Integrated Auth is the only option checked on the site. Users, the clie...more >>

Hello. I am a regular in the SharePoint Portal Server NG but this is my first time in the IIS group so forgive me if I get this wrong. I am trying to understand authentication. I know that if I set up a web site to use only integrated and then put it behind a firewall so integrated doesn'...more >>

A friend runs IIS on a windows XP system. The following is an excerpt from his logfile. It appears someone is trying to get iis to run the command line interpreter. This raises a couple questions, and since I use apache I really don't know enough to answer them. 1) Will IIS actually run a...more >>

Hi, I'm a bit of newbie to networks and IIS. The users on my network, log in using a novell login box when they boot up their pc. When they open their browser, they have to enter the same username and password to log into our intranet. Is there anyway I can get rid of the login promp...more >>