I havea funky problem here. We have users, through MS Visual Studio, who are able to browse and read source codes of web apps that were developed even though from the global settings (properties of Default WebSite) and even locally on the folders themselves (and service master properties) the ...more >>

I have a site comprised most of asp pages with ss includes for the headers, footers, etc. I have a Verisign ceritficate installed. On the page requiring the certificate, a prompt is given saying some of the site is not secure do you want to display yes/no. I've tried yes and no and can not ...more >>

Hi! Just wondering if anyone managed to set up HTTP or HTTPS authentication on a RADIUS server on an IIS server. I read that there is a software (Radiis) that can do it but I was hoping that someone managed to do it by other means. Thanks Kailash ...more >>

Hi all, I have the following constellation: Windows 2003 Server with IIS and integrated windows authentication as the only authentication method When I request a page like http://myserver.com/file.html, it works fine with a Windows 2000 client (on the server I can log the requesting user...more >>

I discovered that our web site, hosted on IIS 6.0, has both anonymous and integrated windows authentication on different folders (have no idea why...), when I try to just have the whole site set to Windows auth and disable anonymous auth, my asp pages are unable to connect to SQL server (where...more >>

Hi We maintain our own web site www.strategic.eu.com We wish to access Analysis Services on another server - not the web server - called blade I have been able to allow access to cubes using Pivot Table Services in Excel by placing the msaolap.asp file in the wwwroot folder on blade itself ...more >>

Hello, On a server (Windows server 2003 SP1), I have some web site. I'd like people have access to this web site only and no access to the rest. And what about the "Defaut web site", may be I can reduce access to my own IP (I have a fixe IP at home) Do you have articles about security ...more >>

I'm running Small Business Server 2003 and Exchange. If I type https://10.0.0.1/exchange when I'm on the LAN, I get my OWA login screen. If I'm outside the office and I type in my normal URL which does point to the outside of my firewall and is translated to my Exchange server, I get the HTT...more >>

Hi, We have a problem with a client installation when SSL POST connections with client authentification are sometimes dropped by IIS 5/W2000 Server. Drops means a TCP FIN sent by IIS once the client has finished sending his POST data, with not a single byte of data going from server to cl...more >>

I have an ASP application running on windows server 2003. It needs to access the registry but is unable to read any data. I have used regedt32 to grant full access to all users for the registry key in question but the ASP page still can't access any values. ...more >>

We have a product which runs on our website which requires that Anonymous access not to be checked in IIS. It uses Basic or Integrated Windows authentication. We are also trying to create our own login screen for that product where a user can enter his/her userid and password and bypass the Bas...more >>

Hi, We want to replicate IIS6 config between a primary and a standby server. Is there any problem with certificates when replicating IIS config with iiscnfg.vbs? regards Zorko ...more >>

Hi all, my team has implemented web applications that running on Windows 2003 and IIS6.0 querying data from SQL 2000 Server. The IIS has Integrated Windows Authentication setting for user authentication. The web will query user data from SQL 2000 base on user authenticate. Normally the applica...more >>

Hi, We have an domain with users. This users will have access to some resources trough IIS6. We use "Basic Authentication" to authenticate. Because users are domain-user and not created locally, they will have to enter domain\user to log in. I have entered "Default domain" under "authenticati...more >>

Here is my situation. 2 load balanced webservers (2003 SP1) hosting a series of websites. When I try to open the website i get prompted for username and password as I should. Then I get 401 error message telling me I am unauthorized. In this case it is a 401.1 error message. I know this...more >>