Authentication issues between browsers
Hi,I would like to login with an AD user to a remote server's asp code that will get the ServerVariables("AUTH_USER") parameter.If i have Anonymous Authentication DISABLED and Windows Authentication...
View ArticleBasic Request Filtering questions
Apologies for this long post. I’m trying to teach myself good use of Request Filtering. From not a particularly technical background, but I want to gain a good understanding of its use a second line...
View ArticlePrint PDF with ASP.NET and Acrobat Reader
I have a web application on a server with Windows Server 2008 R2 and I’ll print a file pdf.- Printers are shared printers, physically connected to another server (Windows Server 2008 R2)- The website...
View ArticleForce IIS to use specific OCSP while checking client certificate revocation
Hi!Briefly, I run IIS server and I want to teach it to use specific OCSP server to check client certificate revocation.Our clients have certificates on smart cards: older cards have only CDP-s defined...
View ArticleIIS Client certificate rule is ignored, any CA signed certificate is accepted
i've tried to configure in IIS 7.5 one of my paths to require client certificate - but only those who are bounded to a specific subject. The configuration is as follows:<location path="Default Web...
View ArticleIE uses NTLM instead of Kerberos in a cross domain scenario
We have an ASP.NET web application (client = Silverlight) that is accessing resources on other servers (double hop). Resources are: SharePoint-Lists and files on a file server. The server application...
View ArticleHow to force IIS7 to send his root certificate of SSL connection
APPLE changes rules and our root certificate "GlobalSign Root CA" now not trusted for APPLE, but if we deploy our site in UBUNTU and Apache do sent root certificate, SSL connection is installed...
View ArticleFTP permissions error 550 Access Denied
Hi, I have an FTP site on Windows Server 2016, I have a group with read and write permissions on a folder, group users can upload and delete their own files or folders, but cannot delete those of...
View ArticleHow to remove Server Name "Microsoft-IIS" and X-Powered-By from HTTP headers...
Hello everyone,We changed server name according to steps described in this thread ( http://forums.iis.net/t/1226447.aspx?How+to+remove+Server+Microsoft+IIS+8+5+header+banner+in+IIS )This is working...
View Articleanonymous at the root site?
The intranet home page application/website is currently set to anonymous. one application contains some code that must run in a directory that is locked down with Windows Authentication , so we created...
View ArticleUse client certificate for mutual authentication without trusting the root...
Is it possible to configure IIS / Windows to use and trust a client certificate for mutual authentication without trusting the root certificate authority.An external party has a certificate which was...
View Articlelogin to WEBDAV folder doesn't work Error code 0x80070043
Hello All,I have a windows server 2016 core (AWS) WebDAV installed all updates installed. I can access the IIS website page, and when I put the urlhttp://server/webdav_share in a browser I get prompted...
View ArticleIIS 7 drops secure cert after successfully adding it at server level
Hi, This is odd; I have a 2008 R2 box running IIS 7. I've added server certificates before to it. This time when I try to add one, it accepts it, I can view the details, and it looks fine. If I click...
View ArticleIIS Windows Authentication with Alias Name
I have a Win 2008 server aaa.yyy.com with alias bbb.yyy.com in LAN. Then I have deployed a simple html page to IIS and set up windows authentication on IIS.When I opened https://aaa.yyy.com/test.html...
View ArticleRequest failed with http status 401: unauthorized
Hi,I have a Web service(.asmx) which was running perfectly on my old server(windows 2008). I have recently migrated to new server(windows 2016) and facing a issue with (Request failed with http status...
View ArticleIIS logs shows SQL injection entry
In one of our asp.net web application, we found a following entry in IIS log. 2018-02-20 03:06:25 172.16.3.101 GET /...
View ArticleCan't get IIS Authentication to work with Active Directory group
So I've been working on this for a few days, using so many google searches, reading so many posts and tutorials and websites that I'm pretty sure I've exhausted my capabilities for self-help.I have the...
View ArticleOne to one mapping encryption password on multiple servers
Hi guys,I have set up one to one mapping authentication on my production web server. My certificate is mapped with a domain account: when I write the password, it be encrypted in web.config file of my...
View ArticleIIS 7 with silverlight
helloi need to have an application site under by default web site use ssl if i hit the site over port 80 it works with silverlighthttp://maps.500.abc.com/hotspots/but if i try 443...
View Article"Client authentication issuers" store with mixed root and intermediate CA
Hi everyone,we are trying to support authentication with italian electronic identity card (CIE) as we already do with italian CNS (Carta Nazionale dei Servizi). Both are client certificates stored on...
View Article