IIS6 on 2003 Standard Server. I have my webpage set up adn IIS is running. Locally the webpage appears. Outside requests are challanged for username and password. The local administrator account works. I've created other local accounts to test but they are not granted access. How do I...more >>

I would like to find a way to detect if our SSL certificate is installed locally on the clients computer and redirect based on if it's present or not. We self assign certificates and do not have the need to buy one. Since the release of IE7, users are now getting the "There is a problem with thi...more >>

Is it possible to run only 1 IIS and set it up so that it displays specific websites corresponding to the user account logged in? ...more >>

Hi, I need to authenticate my users against a central security server using their domain logon. Windows Integrated Authentication doesn't seem to fit as that uses ACLS and the like, what other alternative do I have - the users shouldn't need to enter their username or password, it should pick ...more >>

Hello, I know this must have been posted before and if so please direct me to it and the solution but here goes: I installed an SSL cert on my system - WIN2K3 Standard with IIS installed. I try to open the web site and I get a page back stating that I do not have the permission to...more >>

I'm working with an IIS 6.0 website running on Windows 2003 Server. It's normally used as an internal website, but we now have a small group of geographically disperse external users that require access. VPN isn't practical in this situation, so I though I'd try SSL. I first tried using SelfS...more >>

hello, I found ways to use SSL in ASP.NET but I do need TSL to connect to a remote site. is this faisable ? TIA, Pierre. ...more >>

My web server is Small Business Server 2003 and I think it use IIS 6. We keep several web sites. I planned to use "https://..." to acces one of the web site, but fail. I think I need to put a certificate to the server. I use find some tutorial on the internet to create the cretificate. All of ...more >>

I set up multiple web sites on my new Vista pc and so far, windows authentication only seems to be working with web apps on the localhost web site. My PC network adapter one static ip address, which connects to the domain, and multiple non-routable ip addresses on the same adapter for use ...more >>

Trying to export a ssl cert to install on another box we are migrating to. Exporting as a .pfx and able to install on new box without issue. OWA and rpc over https work without issue. WM5 devices using active sync are not able to work over ssl. Error asking them to verify their device time or ...more >>

In order to install BackupExec v11, I needed to remove .NET Framework 2.0 BETA and install .NET Framework 2.0. When the BETA version was removed, all apps reverted to 1.1. I have since run aspnet_regiis.exe -i to update the app but since I get the error listed on the subject line. This is...more >>

I didnt know where this should go so posted it to iis.security also. I have a site which is windows authentication based on a domain that has active directory as its backend on IIS 6 / Win2k3 servers. My site is published to the internet through ISA Server 2004 SP1. I want the user to use t...more >>

Quick newb question, if you turn off anonymous access to the Default Website in IIS and turn on Integrated Authentication - then if you go to http://localhost you will get through to the site, but if you go to http://127.0.0.1 you will need to login first - why the need for login ? Thanks ...more >>

I have a web server in the DMZ which is not on a domain. I have set the default directory for the site to a UNC share on DFS through a firewall, and I set the domain username / password for the share. I can access this share from the web server without problem through the firewall, and t...more >>

Our website was compromised sometime in the last few days, but our Antivirus (Symantec Corporate) when run on the server doesn't detect it. It is a Windows Server 2003 Standard server, running SP1 and all the latest patches. IIS sends down a website to the user with IFRAMEs injected into t...more >>

We currently only allowing access to our website to a fixed set of IPs. We are blocking these at the firewall now. As we are growing, we're adding more and more IPs to allow access and our firewall guys love us. My question is: Is the IP address blocking feature a suitable replace for blo...more >>

I have IIS5.0 installed on Windows XP SP2. By default, in "IIS Directory Security Anonymous access and authentication control" has: Anonymous access TICKED Allow IIS to control password TICKED Integrated Windows authentication TICKED Account used for anonymous access IUSR_machinename & passw...more >>

Hi, I have a Win2K3 Server with IIS6 on it. In the Default website, I have a directory (/iwaprotected) with just a default.asp in it. The machine is a member of domain "whatever.com". When I use IE6 (on the same physical machine) to connect to http://<FQDN_of_my_server>/iwaprotected/de...more >>

Hi Everyone. I created an ASP page that read info from a DB and create XML / Text files on the web server folder, the files created can be read by the public. How can I block any request to create/delete/modify files on the server unless it is by that page. I am running IIS 5.0 is there a w...more >>