From what I have found on the net this has something to do with IE 7 but I can't find an answer that I can understand. The message "This website has declined to show this webpage http 403" appears when we try to download from a download link on a page. One answer was that it could be a downlo...more >>

Hello from Spain, I have a web server running under IIS 6 on Windows 2003 Standar Edition, domain controller. I have 2 "sites" (web pages really, not IIS 6 Web Sites) running on it on the same port (80). The first one is plain HTML site, and I have Anonymous access security applied to it. Wo...more >>

We have many users that share computers. The computers are logged on using a generic user account so that certain apps can continue to run and be available all day. We have a particular web site that requires Windows Integrated authentication whereas all the others on the web server can us...more >>

I need to check what IIS 6 service pack is installed on our 2003 Server so I can prove it is up to date. I can not figure out how to check the version. Any ideas? Thanks in advance! Kevin ...more >>

Using IIS on a standalone Win2003 server. Users hit the server IP from any workstation on the LAN and get the default web page. Setup has been in place for about a year with no problems. Last week, we start getting errors when users try to hit the site. Users get "Authentication Required" pop...more >>

Hello! I am trying to play with ASP on my home computer. I am placing a "hello.asp" page with simple code in C:\Inetpub or C:\Inetpub\wwwroot and running it and am getting: The page cannot be displayed The page you are looking for is currently unavailable. The Web site might be experienci...more >>

I am not sure if this is the right group for this, but it is at least partially related to IIS security... Due to a hardware failure, we have temporarily found ourselves with insufficient storage on our main web server (W2K Server). I am trying to configure our newer W2K3 Server, that mainly p...more >>

Can I set a idle time limit on a website in IIS to logout a user? does it have to be a SSL site? thanks Rick...more >>

I have implemented Single Sign On (SSO) between windows and SAP Enterprise Portal (EP) - so if a user is logged into windows, they can go to our EP site, and EP knows who they are, and applies permissions appropriately. I have pretty much got this working, however I have run into a couple of ...more >>

I apologize if I'm posting this in the wrong group but since I don't know the answer to my question, I have no idea where it should be posted. I have seen several banking websites that are able to determine that I'm connecting from different machines. The websites register each one asking extr...more >>

Hello, I have question about how this Basic Authentication works with IIS7. SO in general it works like this (correct me if I am wrong) Browser send in http header row with Authorization - something like this ..... Authorization: Basic MTIzNDU2Nzg5MDpIc1lYRm9aZkhBcXlMY0NSWWVIOHFR ..... Th...more >>

I am trying to set up a stand lone test desktop with windows xp pro and a trail version of SQL Servrer 2005 edition. I have installed SQL Server 2005 Analysis Services, Data Engine, Notification Services, and Reporting Services. I have made sure the Configure Report Servers do not have ...more >>

We are running multiple website on iis 6.0. There are a couple of websites that have to run ssl. Each website has it's own ip adres and in is registerd in dns according to this ip. I tried the following method to achieve this. example customer1.domain.com : port 80:62.55.33.11 443:62.55....more >>

I need some assistance pertaining to using IIS 6.0. I updated my cert via VeriSign and when I check the SSL properties for the web server it has the new cert, but the web browsers are still showing the old cert when you connect to the website. I restarted the web site and the server. Any id...more >>

Hello all, I administer servers that run a busy web application. The IIS servers are load balanced, currently Windows 2000 Advanced Server but upgrading to 2003 very soon. At the moment, only the login process is always secured. A fully SSL secured session is an optional extra that the...more >>

for sbs 2003, so far default iis setup, eg, inetpub/wwwroot, default permissions, security etc looks like i have to do this differently have a folder for images, right now directly under wwwroot, using for <img tags for pics, etc on web pages like ebay, and others, works fine then i went to s...more >>

I generated a CSR file t request my SSL certificate but I only had a defualt web site at the time of request. I have recevived the certifcyte. Do I wait for the new site to be created before installing the certifacate or do I install it now. I'm wondering If the instructions I had were worn...more >>

How to change iis default setup directory ?(note : is not change webpage directory in iis ) because that is best way to increase iis security. ...more >>

Hi! Our intranet is running IIS6 on Win2k3 and is using Windows Integrated Authentication without SSL. It is working perfectly as long as the users are on the same domain as the server. The company has opened a new office abroad and staff from this office are on a different domain. We would...more >>

IIS 6.0, the site does not have a "host header value" it is the "Default:None". What happens when an initial get request does not contain the site header? E.g The Get comes to my IP address but instead of askign for "mysite.com" it contains "yoursite.com"? Given that mysite.com resolves to ...more >>

On my personal IIS and SQL server running my hobby homepages had a leave me a message set of questions and managed to get my database tables uploaded with - This brought my whole system down, I assumed I had full SQL Inject validation and IIS patching, anyone know of any new vulnerabilies or ...more >>

i use the microsoft script to search on indexing server. If i use the property Q.groupBy on my IIS6 machine i have a CreateRecordset erreur '80070057' Paramètre incorrect. /archive/indexation3.asp, ligne 38 if i turn "execute in iis5 mode" or on an other machine it work. If i remove g...more >>

I am looking for script that will validate IIS settings such as, • Log file location • Log file type • Client IP Address • User Name • Method • URI Stem • HTTP Status • Win32 Status • User Agent • Server IP Address • Server Port Determine if “Everyone” failed ac...more >>

I'm trying to use IIS's Integrated Windows Authentication to take advantage of various user management and security features of Windows, namely password expiry and complexity checking. But currently if your password expires, or the user flag "must change password at next logon" has been set, the...more >>

Hi, I'm wondering which file extensions are treated as "exposed" and which are "hidden" by the IIS? I was told that the .bak file is exposed so external users can actually browse and see content of files with .bak extension but I couldn't reproduce it. Thanks for your advice and pointers. ...more >>