RemoveServerHeader = 1 in request filtering
Hi Team,IIS 7 and above have feature called request filtering which an alternative to URL Scan, that I read from many of the forums. But I did not find "RemoveServerHeader" tag. What is equivanlent...
View ArticleAccess network file from process
I have the following setup:IIS 8.0a web handler call it test.ashxImpersonation & Windows Authentication are both configured. Kerberos is showing as the authentication type.test.ashx uses the...
View ArticleIssues with virtual folder
I have a website and it sits on the IIS Server and I have a folder on another server the file server. I have set the Virtual directory to the folder on the fileserver. This application both servers...
View ArticleLoadLibraryW call hangs on IIS
I am building a sample MVC 5 web app that makes some P/Invoke calls to an unmanaged library (loaded via LoadLibraryW function).It all works well inside visual studio with IIS Express, but once I...
View ArticleList ciphers supported by cert
Given a cert how can I determine what ciphers it can support in iis?
View ArticleThe client and server cannot communicate, because they do not possess a...
I am running a wcf app server with netTcpBinding in a service being called from inside of asp.net in iis 7.5 on windows 7. Both are on the same machineWhen I try to debug I getIn the System Event...
View ArticleDisable TLS 1.0 for one site only IIS 7.5
I have five websites running on Server 2008 R2/IIS 7.5. I wish to disable TLS 1.0 for only one of the sites (for now) as a test. Is this possible?
View ArticleCertificate always prompted with client cert set to accept
Hi,I have a application configuration in IIS that sets client certs to accept while not requiring SSL. On Win28R2, when clients navigate to my site, IE does not prompt for certificates (desired)...
View Articlepfx created by openssl not recognized in CCS
I create a *.pfx file from .key and .crt files by openssl. The creation works, but as I copy the .pfx file to the centralized certificates store of IIS it cannot be read.openssl pkcs12 -export -out...
View ArticleAuto Limiting or Banning When Quota Reached (IIS or other Software?)
Hi there. I'm looking for either a module for IIS 8.5 or a third-party "one-time fee" software that can do any of the following: 1.) Automatically Ban IP Address if set quota is reached (ban for a...
View ArticleClik here to view.
Can't disable SSL 3.0 on IIS 8 (Windows Server 2012)! Tested many ways
Hi, I'm getting totaly crazy. I try to disable the SSL 3.0 on IIS 8 (or 8.5? how toget the right version?). Following steps i did:Disable it manually in registry like here:-...
View ArticleClient Certifcate Authentication
I have Windows 2012 R2 and IIS 8.5.Client Certificate Authentication does not work on any of my Web servers at all.The User certificates are valid, the CA is reachable, The CA certificate is in the...
View ArticleTLS_FALLBACK_SCSV
I have heard a lot about Microsoft complaining for disadvantages of TLS_FALLBACK_SCSV, but I wonder whether this feature has been or is planned to be integrated in Windows 10 and correspondingly IIS...
View ArticleApplicationPoolIdentity vs NetworkService
I recently migrated a web site to Windows Server 2012. This site (vb.net / framework 4.5) accesses PayPal data and uses a PayPal certificate. I installed the certificate on the server but was unable to...
View Article401.2 as domain user - ok as admin
IIS 8.5 on Windows Server 2012Windows Authentication EnabledApplication Pool ID is domain service account.SPN for App Pool ID is set correctly. Kerberos Authentication seems to be working (as indicated...
View ArticleclientCertAuthentication
Hello, I have configured my IIS 8.5 FTP Server to use clientCertAuthentication. Configuration looks like the following:<ftpServer> <security>...
View ArticleURLScan 3.1 - different rules for different sites
Does anyone know if it is possible to have different rules for different sites? If so any idea how it can be done?Thanks
View ArticleHTTP Error 403.4 - Forbidden when I force SSL in IIS 7.5
I have the binding properly configured and the site is available when you put in the https:// and the site is viewable when just browsing to http://When I set the SSL Settings to "Require SSL' The...
View ArticleCertificate Transparency
Given Google's push forward on Certificate Transparency in their Chrome browser, I'm looking for options on getting IIS to play nicely with it. Theirresources for site owners says there are three...
View ArticleApplication hosting Issue on Windows Server 2012 (IIS 8.0)
Hi,We are using below environment for one application:Windows server 2012IIS 8.0DotNet Framework 4.0 (Visual Studio 2012)Issue description:We are working on server migration. Application is developed...
View Article