401 Unauthorized error while accessing SSRS snapshot from C# code
Hi,We have our application(c#, .net 3.5Sp1) and SSRS 2008 running on one box (windows server 2008 R2) and SQL Server 2008 running on another box.The C# app code is calling the below...
View ArticleExploit
Hi, apparently there is an exploit in IIS 7.5. There are people who can do everything from your MySQL database and retrieve or modify. Very annoying so. Is solved with IIS 8?
View ArticleHow to create a 'certificate trust list' for IIS 7.0 client authenticated SSL???
Hi,I'm trying to setup IIS 7 on Vista and W2k8 for client authenticated SSL (require client cert). I've reviewed the doc at:...
View ArticleIIS Windows Authentication only works with the first website
Hello everyone,In IIS 7 you can choose to use the Windows Authentication instead of Anonymous. I made four extra websites in IIS 7 and configured them just like the first one. The first one only works...
View ArticleIIS window authentication...
We are using IIS 7.5 with only windows authentication enabled. providers are ntlm and negogiate ( since we want it to be accessible via internet). The client is silverlight calling wcf services. even...
View ArticleGetting ModSecurity IIS 2.7.2 to work on IIS 7.5/8.0
According to http://forums.iis.net/t/1192523.aspx ModSecurity isn't supported here, but that post is from before the release. So some insights and support would be nice.I'm unable to get...
View ArticleIIS Anonymous authentication problem
I am trying to configure anonymous access to the EWS/Services.wsdl file.In the feature view, I have choosen authentication and enabled anonymous access.But still while accessing the file from the...
View ArticleLocking down IIS APPPOOL inherited permissions locks out local administrators...
In a nutshell,we have been locking down the IIS APPPOOL account used by an Internet facing web application. The IISAPPPOOL account by default belongs to a number of mandatory groups when the security...
View ArticleNot able to find certificates installed using IIS
Hi,We have hosted a webservice on IIS which issues certificates to an end-user. We are not able to find in which store the certificates are getting generated if we host this webservice on IIS. They are...
View ArticleII7.5 Complete Certificate Request Dissapears
Hi EveryoneA frustrating afternoon and morning indeed, but I hope someone can help shed some light on this strange oddity. So I have a new wildcard certificate from GoDaddy (*.company.com) followed...
View ArticleIIS AppPool and Virtual Directory
I am running IIS 7.5 on Windows Server 2008R2.I have an .NET4 Intranet web application with a Dedicated Pool.I'm using ApplicationPoolIdentity and Windows Authentication.I have a virtual directory on...
View ArticleLogging Only Mode in Dynamic IP Restriction
Anybody tried to test Logging Only Mode? I have followed this example which works fine when you don't enable Logging Only Mode, but when I tried to test it with Logging Only Mode, I didn't see any...
View ArticleURLScan + dot in path
Dear friends,We have a hosting business, running IIS 7.5. I installed URLScan. Ive had issues with paths such as thishttp://www.domain.com/index.php/services/products/Unfortunately this is something...
View ArticleIIS7 + PHP + read files from a UNC folder
My Situation:W2008R2, IIS7, PHP 5.3.19, and samaba share that I can map and authenticate to with me win-server.I want my IIS7 to only host php code and some cache. The PHP app need to present pdf...
View ArticleHandlers and HttpForbiddenHandler
Hi Guys, I am setting up a new IIS 7.5 System, to move a classic ASP Application form IIS 6. I have not much experience with IIS 7.5, but many settings are similar to IIS 6 and the Application works...
View ArticleHow to Restrict access to folder in wwwroot?
I need to create a folder in wwwroot that is restricted to only certain IP Addresses. I'm new to this so I have absolutely no idea where to look. are there any good manuals for this stuff? thanks!
View ArticleWildcard certificate in 2 ports?
Hi all, I have a nodeJS app running on port 2443 in my server, responding to mywebservice.domain.com. Then I have various websites set up in IIS, like client1.domain.com, client2.domain.com,...
View ArticleAccess to the path is denied
Hi,We have recently started to use a new group of Windows 2008 R2 SP1 IIS servers for production. We are using a dedicated AppPool for one of our test apps to troubleshoot a problem. The problem is...
View ArticleXML parsing failed at the line 1 column 9 DTD is prohibited
Hello,I configured SSAS access via HTTPS and a server proxy but when I try to connect to the proxy server with a VS2010 client, I obtain following error 'XML parsing failed at the line 1 column 9 DTD...
View Articlecannot connect to webdav but can browse to secure website using ssl &...
I have followed instructions in a blog that showed how to setup self signed certs and client certs, I think it was really focused on enabling access to the default website. I was able to gain access to...
View Article