Hello, Could you please help me solving the following problem: I've got both private key (.key) and SSL certificate (.cer) files, generated by the company hosting my domain. (I've ordered them through their website, so I didn't create a certificate request from IIS Manager.) Now I'm trying to i...more >>

Can I, as admin, give webDAV users permission to GIVE permissions to subfolders? I have teachers that want to administer student's folder. I need a lead or answer please. thanks, cln ...more >>

I have written a ISAPI filter. It handles all the request urls and generate output. None of the urls are mapped to file system. Now I want anonymous access to most of the urls served by this ISAPI filter. However for certain urls, I want to enable client certificate based authentication....more >>

Hi all. We are currently building a web site that requires a client certificate for authentication (certificate hosted on smart card). We are having some problems implementing the "Sign out" functionality of the website. What we are trying to do is to implement the following scenario: 1....more >>

I enabled User Authorization and my IIS is not starting up: User Authorization file content : <?xml version="1.0" encoding="utf-8"?> <AzAdminManager MajorVersion="1" MinorVersion="0"> <AzApplication Guid="622bc2f4-6a22-4415-991b-d93a13764ba4" Name="IIS 6.0 URL Authorization" Description...more >>

Could anyone help me to secure my ftp site in iis? I am not running a domain, but am using windows 2003 server. thanks...more >>

Hello, I have a scenario I'd like to put out and see if anyone can help. I have a windows 2003 R2 network with an internal and perimeter network, the internal is fully windows 2003 and all users have access to mapped drives on the file server, we also have exchange 2007 server. In the perimete...more >>

I'm working on a simple file sharing website for my company. We want all of our stores to be able to access the website, but only those stores. Each store uses a dynamic domain name (kind of like dyndns.org but a commercial one, which pegs its dns name down to for example: store1.commercia...more >>

Hi All, I want to allow anonymous access to my webserver. However I want certain urls to be allowed only after client certificate based authentication. I read many documents on client certificate based authentication and access control. But I did not exact information I am looking for. T...more >>

Hi All, When ever i open my inetmgr iis 6.0 the console root tree structure is Invisible and becomes visible after i do iisreset. Can anyone please help me In finding out what could be the reason and how to trouble shot this issue. Thanks Manu. ...more >>

Hi, my situation is: 1 domain controller in a single domain Win 2003 R2. There is a web server that hosts a ftp server. The web server is a member server in the domain. I cleared the "Allow anonymous connections" option on the FTP Site Properties, because I want that only few domain users ...more >>

microsoft.public.inetserver.iis.security We are issuing an internal Cert on a website , which was working fine with outside users, using IE6, they just had to import once and that was it. With IE7 they install the cert, but they get warned everytime they go to the site and get the red URL bar ...more >>

We have an internally developed application that uses forms to collect data from the customer. This information consists of sensitive information we don't want stored if the end-user (browser) has AutoComplete for Forms turned on in the browser. Isn't there a way to disable this functional...more >>

Is there a way to determine if the certificate had a pin/password entered prior to submitting it to a site? That is, can I tell from the server side if the certificate is from a smart card with a pin or a soft certificate with a password? Thanks, Mark ...more >>

Hello, I am trying to configure IIS to accept any certificate, from anyone, is that possible? TIA! Stanko. ...more >>

For security reason, I need to disabled the IWAM_USxxxxxxxx INTERNET GUEST A/C,but disabled theaccount, the event log non stop showing the following error "DCOM got error "Logon failure: user account restriction. " and was unable to logon .\IWAM_USGSCW2000 in order to run the server: {3D14...more >>

I'm running Windows 2003 R2 64-bit and had IIS 6 running fine until I installed Coldfusion MX7. Now I get 401.3 errors for any site that I try to access on that server. I verified that Domain Users, IIS_USR and IIS_Servername all have access to the directory \COLDFUSIONMX7\runtime\lib\ What...more >>

Okay I am not sure why I can't figure this out, but it has been a long time since I had to set up any users for FrontPage authoring of web sites. I have a web site running in IIS 6.0 on a Windows 2003 Server. I have configured the Server Extensions 2002 for the site and can log in remotely v...more >>

Currently, we are using external party’s SSL certificate to secure our web sites but for our SSL VPN appliance, the vendor said that we could use Microsoft certificate. But I am not sure whether there is any impact between the two or the best way to set up the CA server, as I am new to Micro...more >>

I am trying to renew our SSL cert on the web server by clicking on the ‘Process pending certificate..’ option but it says that, ‘Selected certificate was already installed to another server,…’. I have renamed the certificate to .cer and double-click it to check that it is the valid ...more >>

Vista Ultimate / IIS7 MS Access 2000 database Hello, I have an .ASP page that requires authentication. I enabled Windows Authentication in IIS Manager > Authentication. For the database, I successfully completed the solutions and workaround in KB article at http://support.microsoft.co...more >>

Hi, I have an issue where the IIS website prompt for domain userid logon after the server is hardening by setting the users and everyone group to read, execute and list for the following directories C:\ C:\winnt C:\winnt\system C:\winnt\repair C:\winnt\system32 C:\winnt\system32\confi...more >>

I am running IIS 6 (W2003 Standard server) and have 10 websites configured. All websites have unique host header values. Two of the sites I need SSL running. The first site has had SSL running since we built this system. I am needing to add the second website with SSL certificate. The pr...more >>

We have an ISA server providing NATted IP addresses to client computers. I see from www.whatismyproxy.com that the local IP address can be seen from the Internet, even using a proxy. How can I make browsing anonymous. 1 your computer 10.*.*.** 2 IP address seen: ***.**.***.** 3 Your external...more >>

I have set up WEB server (Windows 2003 SP2 with IIS) to host a site. While looking through the security events audit. I noticed a large number of FAILURE AUDITS with the MICROSOFT_AUTHENTICATION_PACKAGE_V1 and KRBTGT\ service. These audits have various logon user names like PETER, APPLE, ROOT, ...more >>

Created a new certificate, received it from Verisign, but I can install it to IIIS It's supposed to say "process the pending request..." but I get the normal wizard options. Is there a way to get back to the "process the pending request..." page or I have to re-request the certificate. ...more >>

Up until last month I have not been able to access a secure website consistenanly. There are times I am able to access this site and sign it but if I sign out and tried to go back in I receive a blank page. I have done the following to tried and resolve these problems: deleted all cookie, file...more >>