can't get one to one certificate mapping configured properly
Hi guysI've been going over the documentation and can't see what I'm doing wrong. Here's what I've got set up:We have an internal certificate server within our domain We have an IIS box outside our...
View ArticleForms Authenticatin Persistent Cookies
On my log in page I added a check box option so my users can stay logged in (60 days) even after they close there browser. If the check box is checked then my code behind adds a persistent cookie to...
View ArticleProblem with Custom Trust Levels
Our IIS servers just were upgraded to IIS 7.5. As part of the government mandated security tightening, they (the Data Center people) are now required to implement a Medium Trust Level. However the...
View ArticleCentralized certificate store not recognizing new certificates
Hello,I have a central ssl store with a password.All my certificates are listed in IIS with all details. However, I have added a couple of new certificates to this store but they display in IIS with a...
View ArticleBasic Authentication Not Working
Windows Server 2008 R2. IIS 7. Visual Studio 2012.I created a new web site under IIS 7 and moved a working web site to this site in order to make major changes to the existing web site without having...
View ArticleInstall certificate but not display netbios server name to site visitor?
Can someone tell me how they request and install a 3rd party certificate but not expose the server netbios name to the site visitor in the browser url area?For example, let's say my server name is...
View ArticleSsl setup
Hello, I have 2 websites hosted on an instance of iis7. One of them in an application which hosts some sensitive data and the other is a CDN. The first website needs SSL adding, and given it's an...
View ArticleSetting Filter Request - allowUnlisted="false"
Hi dear friendsPlease, I need support with this case ...I have configured in the allowUnlisted IIS request filtering parameter value to false (<fileExtensions allowUnlisted="false">) Then, when I...
View ArticlePhysical Path Credentials
I have a question about Physical Path Credentials. Spent lots of time searching the posts but didn't find the answer.When Windows authentication is applied to a web site, Application user (pass-through...
View ArticleIIS 7.5 double-hop issue
I'm pulling my hair trying to figure this out.We have 2 non-trusted domains in our environment, with our userbase on one domain and our customers on the other. We have a customer intranet site that...
View ArticleProtecting files directory, but allow server side access
I have a files directory that stores PDFs and doc files. Users that log into my website can download and upload files to/from this directory and never visit the file URL. I want to be able to restrict...
View ArticleYour server is involved in DNS amplification attacks, please correct your...
How do I delete this post?My server company sent me on a wild goose chase telling me to reconfigure my windows dns service.There isn't any windows dns service on my box.I just found out they installed...
View ArticleWhen should I add my service account to IIS_IUSRS ?
I have a service account under which my app pools runs. Site is using Windows Auth.I understand that its a good practice to add your service account to this group so that it has access to all IIS...
View ArticleCustomizing Trust Levels in IIS 7.0
<div>Hi folks;We have a problem. We have a web site with a number of web applications residing under it. Each of these web applications make use of a customize configuration file which was...
View ArticleIIS 8 Implicit FTPS Best Practice and Support request
Here is some up front detail.System:Windows Server 2012 R2 Standard (VM)Build 6.3.9600 IIS Version 8.0Build 8.5.9600.16384 Current Configuration:Locally stored and managed FTP site bound to port 990...
View ArticleSSLv2 in Windows 8
We are using IIS 8.0 in Windows 8. One of our costumers want to connect to our server by SSLv2 protocol, because it supports an old system.I have tried to enable SSLv2 in the Registry...
View ArticleHow to only allow Domain user to access contents
Hi,I am new to this forum, if I make any mistakes in posting, please kindly let me know.I am working on a task to move IIS 6 (windows 2003 R2) to II 7.5 on windows 2008 R2.But I am not really familiar...
View ArticleTLS 1.1 and AES-256-CBC
We're using IIS 7.5 with Windows Server 2008 R2 and there appears to be a known bug in IIS7.5 where, when using TLS 1.1 with AES-256-CBC the server accepts connections and seems to accept uploaded...
View Article401.1 Windows Authentication
Hi All,We have configured a Website for our server with Windows Authentication Enabled. We are running the App Pool under App Pool Identity. We have given the folder all the required permissions And...
View ArticleSSL automatically redirecting (unexpectedly)
An existing website that's been in production for years recently had its SSL certificate expire. To get a new certificate, I used IIS to generate a CSR which was processed and approved by the very well...
View Article