Hello, If I access the same page located on the same server from localbox and accross network I see different behaviour. Access from local computer ends up in HTTP 200 result and across network (same subnet) ends up in 403 error. Both requiests are below. They are identical. I'm puzzled wha...more >>

I am calling a web service from an ASP.NET application. The web application doesn't send any authorization information to server it attaches. <identity impersonate="true" /> in app's Web.config doesn't help. Questions are: 1. How I can pass my credentials through web application? If I a...more >>

Hi, I have two IIS server at two location , all having the same content . If I have a certificate on Server A , can I export both the certificate and its private key and re-import to Server B ? In other words , can I share a web server certificate ? Norman ...more >>

I have an intranet web site running under IIS 6.0 on Server 2003 in a 2000 AD Domain. For Directory Security I have ONLY Integrated Authenticaion enabled. If I browse to the site by IP, for example, http://192.168.1.2 I will be prompted to enter a username password and domain. If I make a HOS...more >>

Hi! I've got a problem on a SBS 2003 running sharepointsites on a IIS 6. The server has two seperate sites configured. intranet.site1.dk and intranet.site2.dk. Actually is also has companyweb and a lot of other stuff configured too. Ok the thing is that I've configured the sites to use ...more >>

I have a problem displaying some of the pages on our web server. The server is a Windows 2003 server (IIS 6.0) that has two web sites separated by host headers. The setup is really simple, with a mix of asp and static HTML pages. I haven't really done anything fancy configuration-wise. We secu...more >>

Is it possible to recreate the Anonymous_User group in Win2k3 that would have existed had I upgraded from Windows 2000? I just want to share a printer over classic Windows networking to Windows 2000 guests without having them encounter the "Login:" box & have to enter "Guest" and no password e...more >>

Is it best practice to join an IIS-6 (run on Windows 2003 server) to a Windows 2003 Active Directory Domain ? Do you have any references/articles about this subject ? TIA Thomas ...more >>

Hi I have a problem on the SBS2003. A college witch is not in our firm any more started a process to give access to mobile users on the server. He claims that he only has done some changes in the IIS. The problem is that whenever any user tries to use OWA and are prompted for username and p...more >>

I use integrated authentication on iis, but am no longer able to logon as different users to test - it seems to have cached my logon details somehow. Even if I call session.abandon and then re-type the url - it still doesnt prompt just logs me on automatically. Is there a way to force it to...more >>

Hi, i have a group of websites written in asp and hosted using IIS5.1 in Windows 2000 server. These websites are all set as "Basic Authentication", all the users are NT domain users. The problem is that user have to type in their domain userid/password several times in order to access all t...more >>

I have set up a web directory with access granted to "domain users" and removed anonymous access. When users are promted for credentials on my site from that directory, they attempt to use their credentials and they are rejected unless they enter the domain as well. When they are rejected ...more >>

Hi, I have a Windows domain foo.com (DC=foo,DC=com in Active Directory) I have a Windows 2003 in this domain and a IIS on it I would like to protect a directory with IWA (Integrated Windows Authentication). I would also like to access this IIS with a domain name diffent. For instance, the ...more >>

Hi all, I have a windows 2003 with IIS6 running on it. Currently 100 of web sites are hosted by this server. Can I rename the server name to a different name without corrupting the web sites on the server? Thanks in advance. Khoa ...more >>

This is in relation with MSUS and I can not find any error regarding rights related to this message. Is there a way to reset rights on a IIS? Many thanks in advance. //Peter...more >>

Machine Config follows... ----------------------------------------------------------- HOST NAME: myworkstation IIS Ver5.1 Resides on a private non-routable IP subnet Is a member of a domain XP Firewall is currently off Logged in to workstation as a member of the domain Default website has A...more >>

Hi , i have a domain windows 2003 with a server iis 6.0; i would like enable a client aClient Authentication with a smart card on a iis directory. i have follow this info : http://www.windowsecurity.com/articles/Client-Certificate-Authentication-IIS6.html and read aslo this http://s...more >>

Hi everyone, I have an ISAPI application taht run perfectly on IIS 5 refuse to start on IIS 6. I spent a lotof time trying to configure it, I think I need a step by step procedure to configure ISS 6 new security stuff in order to run an ISAPI application. Any help will be appreciate thank ...more >>

Our web servers (IIS 6/ WIN2k3) need access to a file server. I would like to create the IUSR and IWAM accounts under active directory and grant access to the web server through one of these accounts. My questions regarding this setup are: What rights do the IUSR and IWAM accounts need to do...more >>

Hello, I am working at a company who until recently only did Linux based webhosting. Due to increasing demand we decided to start using W2K3 to serve ASP websites. Problem now is that I want to use the existing infrastructure with W2K3. There is a very large linux cluster which is alread...more >>

I have setup a folder with one pdf file and protected the folder with username password and it works great. But, I have another folder with multiple PDF files. It seems any username or password works and let's the wrong people in. Obvioiusly, I am a novice with this, but have been in IT...more >>

How to disalbe trace method without running urlscan? I found the reghack for IIS6. Is it the same for iis 5?...more >>

Hi all, We have just deployed an internal system that consists of a web app and a set of web services. The web services use a SQL backing store. All are hosted on the same machine. Windows authentication has been used and anonymous has been disabled. However, when we access the web servi...more >>

Hi all, I have an odd issue... I have an IIS 6 server (actually running Exchange OWA) and two users, one of whom is allowed full access and the other is denied all access. The denied user is a member of domains admins and exchange admins, and can log onto a mailbox fine using Outlook but no...more >>

Greetings, I'm working on a CGI program that will run under MS IIS 5.0 and will browse folders on three other machines, building HTML pages that will provide links to these folders. Essentially, the CGI will connect to each machine in turn, doing the FindFirst/FindNext process based on the ...more >>

Hi , i have a array of iis 6.0 web server and i would like block the connection (refferal) to my site dorm a not "official site" like phishing web site. I have found this : http://www.irritatedvowel.com/Programming/DeepLinkingHttpModule.aspx but the question is : Exist the same so...more >>

We are currently serving images of financial documents to users on our website hosted on Windows 2000. The problem we are having is that anyone can go straight to the image in the directory. What we're hoping to do is have IIS use the user context of the site that is requesting the image to ...more >>

in iis6 on a DC and using asp.net 1.1, when running the asp application the following message appears: "Server error in '/applicationname' Server cannot access application directory D:\inetpub\wwwroot\applicationname\. The directory does not exist or is not accessible because of security setti...more >>

Hi folks, I'm trying to find out if there are any limits on the number of IPs you can Grant access to, if a web is set as Deny All under the IP security settings. I'm looking for hard limits and performance limits both, on IIS 5 vs IIS 6. If anyone can provide me any information, that wou...more >>

hi, i have installed windows 2003 server with sp1 and i have troubles with my asp pages. i suppose that my iis is correctly configured, because(is funny) my php pages works, the html pages too! the ACTIVE SERVER PAGES is activate in the extensions panel, the scripts on the site have the autor...more >>

The instructions to install a server cert after a pending request is accidentally deleted (details here: http://support.microsoft.com/default.aspx?scid=KB;EN-US;329508 ) does not work for IIS 6. For some reason, the original restored request does not associate with the installed cert, so, wh...more >>

Hi all, I'm having a problem with what is most likely a rudimentary task. I want to lock down access to a folder on the webserver so that only a particular security group has access to it. However, I have created a user that isn't a member of any groups (I've removed him from Users as well) a...more >>

I am looking for a tool like Fiddler that will allow me to debug (view) HTTP requests as they come into the web server (iis 6.0) can anyone recommend one? Cheers Ollie Riches ...more >>

Have been hunting down this ghost for 2 months now - any feedback is appreciated... We have a Server 2003 Std Box, running IIS 6.0 (all updates installed - NOT 2003 SP1). It hosts Sharepoint portal server, and our Project server and only allows access to clients on our LAN. In IIS, (Co...more >>

Hi, Here is my problem: I have a Windows 2003 Server running IIS 6.0. I have an ASP page (not ASP.NET) launching a third party program on the command line, which in turn print a document on a network printer (or should do so, local printer works). The problem comes from the third party pro...more >>

Its on a WinXp Pro fully patched. I'm logged in as a user with domain administrator rights. The aspnet working process is running under the local systerm account. When I type http://localhost/reports I get the following error. I did the check outlined in the text and gave the IWAM_MachineNa...more >>

I have a web page on my server which includes video files (login is controlled by windows) I am prompted for login/pass when accessing the web page Problem is: Every time I click a video link (video files are in the same folder/ same security) I have to login again before the file will ...more >>

IIS 6.0 Windows 2003 SP1 I am having a problem with IISADMPWD. I am granting my users the abaility to change their passwords via a web page. I can get to the main page fine http://<server Address>/iisadmpwd/aexp2b.asp. I fill out the form and click on the appropriate button, and get sent t...more >>

Could someone please point me in the direction of a step-by-step idiot guide on how to access data files across a network. Here is what I want to do: I have IIS 5.1 running on my local machine with my web site located inside the wwwroot of my inetpub folder. I want to use ASP and ADO to a...more >>

I have a website hosted on IIS 4.0 Server. For some reason when you go to www.company.com, it brings up a foriegn site. It says something about iskorpitx. However, if I browse to the IP, the website comes up fine. I've already restored the index and default.htm files but it doesn't seem to hel...more >>

I need to enable script debugging for a site that is held as a subfolder of \inetpub\wwwroot but the Configuration button on the Directory tab of the IIS snap-in properties dialog for this folder is greyed out. What permissions do I need to access this button? I'm using XP Home SP2 with IIS ...more >>

My husband made anpasswoed for the content advisor and HE did not write down a hint .........we have tried every password he could think of but we cant disable it how can i fix this? -- amy...more >>

We are giving away our new ssl secure ftp client wrapper (any version of Windows). Although its intended for use with our new ftp server wrapper, it does work with many commercially available secure ftp servers. You don't have to look at advertising or give us an email address, just download ...more >>

i have install a sharepoint portal server and i put the authentication as a NTLM. The problem is that when a domain user tries to acces de portal, the portal promps for the user and password to access. How can i get to function de NTLM?...more >>

Hi, I want to grant access for my web site for some IP address with not password and for the internet I want a user/login to access to the web site. It possible? Config: Windows 2003 server with IIS 6.0 ...more >>

Hi, I am regularly getting error emails from my web pages due to automated attempts to post maliciously crafted form content in an attempt to see if it can be used for spamming. (Issue discussed further here http://www.anders.com/cms/75/Crack.Attempt/Spam.Relay). There is a vast amount o...more >>

The MS Shared Hosting Deployment Guide lists among best practices: Ensure strong permissions are used on Web content Use separate anonymous (IUSR) accounts for each Web site Never allow anonymous user (IUSR) Write permission The document also describes Isolated Shared Web Hosting ...more >>

How could I enable this on IIS6.0/windows 2003 AND IIS5.1/WinXP Pro SP1? Apparently, doing so would enable security token to be passed on to SQL Server or Active Directory? Using Integrated Windows authentication does not work, at present....more >>

Hi. I have a general issue where I would like a website to handle both authenticated and non-authenticated users. I will try to explain further: The maschine is dt1 (on the domain), the website is vt and the domain is intranet. From the inside, if authenticated users go to http://dt1/vt th...more >>

I have Windows 2003 basic server and IIS6 installed on a server - I implimented Certificate Authority onthe same server. When I try to request a certificate, I get an error that says: "The proper version of activex failed to download and install. You may not have sufficient permissions." I ...more >>