IIS 8.5 with php script writing files to a windows share - not working
Hello all, I have been searching high and low and cannot find a solution to my problem. I have an IIS 8.5 server configured with PHP 7.1. I have an HTML page (basic input form) that calls a PHP script,...
View ArticleHELP Cannot get all CSS and scripts to display on site, permissions issue
 I have a website which displaying partially, I am having trouble with web application access css style sheets and executing javascripts scripts I believe it's related to access permissions to...
View ArticleUser for IIS Client Certificate Authentication
I have a requirement that I have to set up a site with IIS Client Cert Auth and I have a couple of questions.The site/app pool runs under a given user account, the same account is used to access MSSQL...
View ArticleEDMS Problem with IIS - Unknown error (0x80041455)
Hi,We have C# code deployed on IIS 7.5Â in Windows 2008 R2. The code add/remove/search users in active directory using edms. The ARS has been upgraded to 7.0 from 6.0 so we upgraded the .net version to...
View ArticleDefault Request Filtering Settings
It seems that for some instances of IIS 8 (?) and later there are some default Request Filtering settings, but for other instances there are none. Here's what I see on some servers:Denied File Name...
View ArticleIIS to enforce client browser to choose certificate of a specifice Root CA cert
Hello All,I have an issue where my IIS server has many certificate in the Root trust store. My application running on this IIS requires a client certificate.So when the SSL handshake happens, the...
View ArticleIIS Windows Authentication prompts for site pages multiple times,...
This refers to IIS 8.5. "authPersistSingleResponse" is set to false.The site has a default landing page, written in ColdFusion, but doesn't do anything more than print HTML and basic JS to move around...
View ArticleIIS hardening for beginners.
Hello.I need some helps about hardening IIS. I know some books and complete guidance exist on the web but I just need a quick help. I like to know which parts must be enable or disable for a web server...
View ArticleIIS 8.5 Centralized Certificate - Replaced - Old Cert Still Used
HelloWe replaced the certificate in our centralized certificates share and despite IIS showing the correct certificate details (e.g. correct expiration date) in IIS Manager \ Machine Name \ Centralized...
View ArticleIIS Site Losing Ability to Authenticate With NTLM
We are having a recurring issue with one of our servers that I am not sure how to troubleshoot. The server is used to host an instance of Microsoft TFS and every few weeks Windows Authentication...
View ArticleAuthentication with Credentials in a Database Table
Hi,I am looking for the equivalent feature in ISS compared to the Apache module "mod_authn_db".All I want is authorization with credentials that reside in a SQL-Server database table.What would be the...
View ArticleAllow IP range and AD group access to web portal
Hello,I'm looking for some help in allowing a specific AD group coming from a specific IP range access to our web portal running on IIS.This is the problem I'm trying to solve: We have multiple users...
View ArticleHow to disable default IIS web page
I have a WSUS server running on Windows 2012R2. In response to a Nessus scan, I have a requirement to disable the default web page that comes up if you go tohttp://mywebserver.net, even though that...
View Articledisabling wshell.script for iis.users and other iis security settings
helloi have ii8.5 .net4.6 on windows 2012 r2 server. i installed it as default.on it asp and .net run.i want to disable wshell.script for iusr.also i have 3 virtual sites on the server. for each site...
View ArticleAccess to the path is denied.
helloI created a new virtual that points to a share on another server, I added the computer accounts to that share. under IIS GUI I can open the folders and see the structure. but when the application...
View ArticleGuide to Blocking TOR IPs in IIS with URLrewrite
Recently I had a need to block people using the TOR/Onion network dark web from access our sites.Often traffic via TOR network not desirable to hit websites and is mostly used for nefarious purposes....
View ArticleYou must be an administrator to use IIS Manager : Domain users
Hi Team,Thanks for your support,We are in trouble with windows 10 IIS Manager, Basically our network is in Active Directory, And such of our domain users developers or testers wants to access local IIS...
View ArticleIIS passing Windows Authentication between two sites on same domain / server...
I have two web applications hosted in IIS in the same domain on the same server in the same app domain with the same machine key.When I use Forms Authentication between the two sites, all works well...
View ArticleIIS hosting site on non-80 port, with SSL cert
Hello,I've got a site bound/hosted on port http://site:3333, and it is not secured. I'd like to get an SSL cert on to this site, yet keep the bound port with SSL, to be ashttps://site:3333Is the above...
View ArticleIIS Reverse Proxy for Fiori Out
Hello Experts,I am stuck in a reverse proxy issue. I am not a network person, so may be I am missing some steps in setting up the reverse proxy.Here's the scenarioI have an external URL - www....
View Article