Solved - Another Double-Hop problem...but its setup right.
Hey everyone!So I've got double-hop issue that I can't seem to shake loose. I've ran web farms before using double-hop kerberos authentication and always was able to deploy them without issue. It's...
View ArticleFacing issue only on Windows Server 2016, IIS 10.0. Login failed for user...
Hi,While verifying compatibility of one Application with Windows Server 2016, I am getting this issue - Login failed for user 'TEST1\T1-WS2016$'.This App has IIS webservices which connects to the App's...
View ArticleWAP/KCD/Double-Hop Problems
Hey everyone!In a previous thread, I was able to get a solid kerberos double-hop solution setup for a web server with a file server storing the content. Now I'm on to the last portion of the overall...
View ArticleOutbound rule not firing on HTTP redirection
Hi,I have a requirement to mask the server HTTP header. This is working for the application by using a rewrite rule in the application web.config file.However, the application also has an inbound rule...
View ArticleBasic authentication for local FTP
Hi,I'm try to use Basic authentication for my local FTP, however, it keep prompting for creidential even I have input the correct username and password. I have added the binding host header. I have...
View ArticleTLS 1.2 client or server
HelloHow can I tell what version is on my 8.5 iis server?or does it use my local machines browser from under IE I get:TLS 1.2, AES with 256 bit encryption (High); DH with 1024 bit exchange
View ArticleSecurity Error
I am getting a security error on a site that was working fine yesterday. the error is:Security Exception Description: The application attempted to perform an operation not allowed by the security...
View ArticleMaking a folder writeable on IIS7 & Windows server 2016
Hello,I have a Windows server 2016, and installed IIS7 on it. Now I installed wordpress. ANd installed the WooComerce plugin. I checked system status and I get this:To allow logging, make...
View ArticleIIS 8.5 How to allow specific Ip address
Hi,we are hosted our WCF web service application in server 2012 R2(IIS 8.5) and we are trying to access the few set of IP address to access our service. but in IIS not allowing to access all IP"Access...
View ArticleIIS 10 Migration Troubles
I have an existing corporate ASP.Net 2.0 website hosted on Windows Server 2003 and IIS 6.0. I am migrating to a virtualized setup where the corporate web server is a VM machines is located in the DMZ....
View ArticleSSL not work on IIS 7.5 on Windows 2008 R2
Hi friends,I followed the links below to start to configure SSL(self signed). It is easy and straightforward. The problem is I can make it on Windows 7 ENT but failed on Windows 2008 R2. I got "IE can...
View ArticleSecurity Scan Report "Microsoft IIS ISAPI Application Filters Mapped To Home...
Security scan has reported the following on one of our sites hosted in IIS 8.5 Server 2012 R2.The scanner enumerated the ISAPI filters mapped to the target Microsoft Internet Information Services (IIS)...
View ArticleWindows authentication 401.2 error
We have a website that we would like to prompt the user for a username (one we created in the server users) and password. We have tried using basic and windows authentication but using either one we...
View ArticleFiltering POST data
Hello,We run several PHP applications.We very often see malicious POST data posted on our servers. We try to block them on application level, but it would be much better if IIS could filter POST data...
View ArticleChanging virtual directories of a website hosted with SSL in IIS
Hi,I had a hosted a website in IIS with SLL certificate installed, I got an update from the developers and I changed the mapped the virtual directory by changing the physical path, earlier the website...
View ArticleWeb Service security
I have written a Windows service (service A) that we are going to allow our customers to call from outside our network. That service calls another one I wrote (service B), on a different server, hosted...
View ArticleCookie Security: Cookie Not Sent Over SSL
is it possible to configure "require ssl" set in the web.config filehttps://technet.microsoft.com/en-us/library/cc771633and does it only work with authentication mode="Forms" and not windows...
View ArticleMedium Strength Ciphers ?
Synopsis: The remote service supports the use of medium strength SSL ciphers. Description: The remote host supports the use of SSL ciphers that offer medium strength encryption, which we currently...
View ArticleHow to strengthen the security for IIS server in win 2008 R2
Dear All,I am a Linux admin and don't know much about the safe issue for IIS server.But in work, I need to manage a IIS server which is built in Win 2008 R2 Standard. And also FTP service needs to...
View ArticleWebDAV with Windows and Digest Authentication
Hello to everyone!I'm newbie to IIS and I want to ask the following question:I have an Azure Windows 2012R2 server with IIS 8.5 (WebDAV) only through HTTPS to share files to my windows users wherever...
View Article