Hi, I changed my IIS sites to run medium trust in the machine.config and now some of them are not working. DNN, Community Server, sites that use HTTP handlers. How do I put in an exception to allow HTTP handlers for my sites in the medium trust policy file? Does anybody else have solved ho...more >>

Hi, I have around 100 hosted sites and all of them run in "medium" trust as set in the machine.config. I want one of the sites to run in "full" trust and the rest in medium trust. How do I set that up in the machine.config or the policy files? Is there a way to specify one site to run in f...more >>

I recently upgraded a web server from Win2k to 2003. The old server had files to download with the .exe extenstion. These files can't be downloaded anymore with 2003. I get the 'Page or File not found' error when I click on it. any idea's? I've looked everwhere I could think of for this settin...more >>

Hello, I'm doing tests on IIS6 with client certificates. What I wan't to realize is, that users must have a valid client certificate for accessing a website. There are 3 machines involved: IIS (2003 standard server with IIS, isolated - no domain member) CS ( 2003 standard server with certi...more >>

all is in the subject :) TIA, Pierre....more >>

I have an Intranet site served from IIS6 which I need to allow anonymous access to because it gets used by Blackberries. I get header infor from the blackberries to identify those users, But I would also like to be able to use HttpContext.Current.User.Identity.Name to identify a PC based user ...more >>

hi, my boss ask me if it is possible to authenticate on an IIS server using Kerberos(?) instead of the usual username/password I'm not sure I understand what he means... :/ could s/o help me ? TIA, Pierre....more >>

We need ti use an SSL certificate in PKCS12 format. Looking on the web, it says I have to use OpenSSL to do that, but I could not find OpenSSL.exe to download, except for the source code. Do you know where I can get OpenSSL from ? Is there any other wway to generate PKCS12 format besides ...more >>

I have two identical servers configured. I have one Web Site published to one of the servers. I have been reading up on Clustering technology and had to stop due to a hardware requirement of "External disk storage unit connected to all computers". What I want to accomplish is sounds simple ...more >>

just amde a ftp server. iis 6.0 box sits on the ISP outside the firewall. going over the windows firewall log i notice that even though I renamed the administrator account when using it as a username ftp accepts it. I have also disallowed anonymous connections and when using anonymous as a...more >>

I am new to setup of IIS and am strugling with setup of an intranet. I have an Exchange Server that is setup with IIS and ASP running. I am trying to use the wwwroot folder to allow me to publish a starting point to my intranet. I am not able to write to this directory from my workstation. ...more >>

Hi, We have a company website that we had setup. I am trying to add a virtual directory and make it password accessable. This directory will be accessed by external agents only. Could someone point me in the direction of what I need to do here. Thanks In Advance, Eric ...more >>

Greetings I have an IIS website that I need to enable SSL for. I am familiar with the process of generating a certificate request from IIS and I have done that and generated a certreq.txt file. For this we didn't need a verisign certificate so we installed certificates services on a Windows 2...more >>

we use iis 5.0 for our intranet. some files have an acl only allowing a specific group access to these files. when someone of this group (he has been logged in to the domain already) accesses these files he is prompted for username/ password. he gets access when he inserts the proper credentia...more >>

Here is what I want to do with IIS on a Windows 2003 server. The server is a part of our domain. I have a basic Intranet troubleshooting website setup in IIS. I want to limit access to a specific group of Active Directory users. In other words, AD users 1, 2, 3 can access the intranet we...more >>

I am using the Altiris system management web service on IIS6.0. The Directory Security is fairly straightforward: all the virtual directories have Windows Integrated authentication, and some of them allow Anonymous. I need to change the authentication method to be Digest, so it can work across f...more >>

Should ADFS (Federation Services) be implemented in a network where web applications running on member servers requires access to a) domain-based SQL Servers, b) domain-based Exchange servers, and c) AD object info (such as user addresses, departments, groups, etc)? Trying to nail down wher...more >>

Details: --------- Running Windows Server Enterprise 2003 SP1 w/all Updates Running IIS 6.0 Enabled Server extensions, ASP and .Net Did NOT configure FTP service Joined to Workgroup WORKGROUP Renamed Default Web Site Description with my own description Located behind hardware firewalls. Q...more >>

I am fairly new to the server side of websites. But, whenever I go to my webpage the windows login box comes up. How can I disable this? Sample: http://72.22.86.144 ...more >>

Hi, My question maybe be asked many times here and i will be gald if u could answer again. My server is windows 2003. im installing Address Book Services in the LCS server. the requirement will need IIS for ABS. My questions is any tools to secure the IIS? i'm not using HTTPS. I heard l...more >>

I put my Default.htm in the wwwroot folder.... when using IE to browse Localhost (127.0.0.1) It works fine.... but when I connect to Internet and browse my IP address to access my default.htm page.... it doesn't work... What is the possible missing steps? how to configure the router for my II...more >>

I've a website that can be connected by 2 different dns names. site1.domain.com site2.domain.com (alias of site1) I 've a certificate installed and that is working fine on site1.domain.com. When users make a connection using the site2 they get a warning that the name of the certificate is...more >>

I know that you should not need to run the Lockdown Tool with v6, but can you? Our IIS was installed before my time here. I'm not aware of settings that may have been changed and would like to make sure all is secure and as it should be. Thanks, Ann...more >>

Our InfoSec people are obviously bored. Is there a straightforward to way to configure IIS 6.0 to not allow client connections using SSLv2 (and only respond to SSLv3)? I have read the following: http://support.microsoft.com/kb/299875/en-us http://support.microsoft.com/kb/216482 http://sup...more >>

All, I have an application that is currently working in IIS5 that when elevated to a IIS6 machine is causing some problems. I have a .Net application that is running under the default application pool "Network Server" account. My application uses a .Net to Java bridge (proxy) to use a 3rd p...more >>

We are having problems with windows authentication in IIS on one of our domain controllers. Here's what we have done: We have setup a test virtual directory in the default web site to D:\WebSites\WebSiteA, disabled anonymous access and enabled windows authentication. Everything works fine. But, ...more >>

I am building a server application which I expect to run on servers that are in the Trusted Sites zone for many of my users. However, I will be serving up content that, in some cases, comes from third parties and it is theoretically possible that some of that content might contain malicious scr...more >>

Hello all, I want to protect the file from special folder, but keep the access for editor from CMS (Content Management System) , Is possible to do that on IIS 5 / 6?? e.g: protected folder: http://website1/download/ , but editor can login to CMS and read and write a file from that directory...more >>

When a user (that's in active directory) logs into ftp://domainnameA.com he sees the home directory of domainnameB.com.... it is happening to all domains. In other words it's like any account user name all see D:\inetpub\domains\domainnameb even though the home directory of every domainame...more >>

Hello, Sometimes we need to restart the IIS services on our intranet server due to the intranet hanging. I am trying to figure out how I can grant my web developer access to the IIS Manager remotely so that he can restart IIS when needed. This is the quick fix to the hanging problems. The int...more >>

Hi all there, we have a APS.NET 1.1 Application running on IIS 5 and SQL Server 2000. We use Integrated Windows Security. Now we want to monitor the application by use of Nagios. It seems that Nagios doesn't support keberos. So another idea is to additionally set basic authentication that a...more >>

I asked one off RapidSSL reseller to renew SSL certificate for web site on IIS 6. The reseller has generated a renewal certificate without any renewal request from me. Is possible to install this certificate? Is possible to generate renewal certificate without any renewal request info? ...more >>

WE have a WEB-Based application that (among other things) generates an excel spreadsheet that is returned to the user. The entire site is SSL secured and uses NTFS permissions for all pages. All users must have a domain account to access the site. When initially entering the site, they a...more >>

I have installed a web application in a virtual directory under the default web site. Before I installed the application, SharePoint was already installed. When I attempted to browse to my default page in my web site, I get a message that says, "HTTP Error 403.4 - Forbidden: SSL is require...more >>

Hi, this might be a rather common question. Please excuse my ignorance, I couldn't Google or MS(D)N any information on the following: Does IIS provide secure FTP? I feel rather queasy when connecting to my production web server over the web to update my web application and retrieving highly...more >>

We have been seeing an increasing number of hits to our website using the Microsoft-WebDAV-MiniRedir/5.1.2600 user agent. The server returns a 501 not implemented error. WebDAV is not running on the IIS6 webserver. We are seeing over 3000 entries a day. here is a record from the logfile: 2...more >>

Hi, I've posted this question in the SBS forum several times but nobody seems to know the answer. My question is specific to security in Small Business Server 2003, as it applies to RWW (remote web workplace) and related web sites created in IIS on SBS servers. IIS creates a default web ...more >>

Hi all, I have a web service in windows 2000 server and I can navigate and see the xml contents doing something this http://myserver/mydir/myfile.wsdl but now, I install the same web service in a Windows 2003 Server, when i try navigate any wsdl file, i can not see the xml contents, the m...more >>

I have read every article I can find and it all looks easy, but my site just doesn't lock down. I really need some help here. My goal is to allow only certain users acces to this web site. The problem is that every user in my AD can go to this page even though they shouldn't have access. T...more >>

Hello, I´ve a problem with modules in IIS. I´ve written a module for IIS (mainserver) and the mainserver uses the function RegisterClass and CreateWindow. A subserver uses the function FindWindow for finding the mainserver and register himself to the mainserver. In Windows with two appl...more >>

Hi, This seems like an easy question. Has me stumped!! If I have a web site and I would like allow anon access, how can I restrict it so that the client can't access a directory below the parent directly, but has to go to the root index.htm say and then can navigate to where ever from any l...more >>

What is the risk of turning this setting on? Does it really send my password (over the internet) to thte destination web server? Could someone on the webserver end hack this password and use it to infiltrate my network (let's assume that some one does have the ability to hack these things)? ...more >>

I have one account on our domain that I need to allow web site access for. I only want this account to be in the Domain guests group and I want to use Integrated Security only for the web site. To this point I haven't been able to get this to work. Is this possible? Thanks....more >>

Hi, I have a AD network with 3 2003 DCs. Most of our workstations are attached to the domain while only 40 PCs are non-domain machines. What I would like to do is to allow all non-domain PCs to be able to access one shared folder in one of the member server within the domain using one pa...more >>

We have had to revoke Administrator accounts from all users that are not real 'System Administrators'. The problem is that several of these users do web development and need to go in to IIS to modify settings/restart it, etc. Can anyone tell me how this can be done without having the users u...more >>