clientCertificateMappingAuthentication and Kerberos delegation
Is Kerberos delegation possible with clientCertificateMappingAuthentication enabled? Can anybody confirm or deny that it works?I've found an old post reporting a very similar problem to what I'm having...
View ArticleSSO with ADFS 401.2 issues
We recently migrated a couple of our MVC apps to SSO using ADFS with basically the following approach:...
View ArticleIIS 7.5 Forms Authentication - 401 on the login page
I have done this before but can't seem to get my new web site working on my test server. This is a subsite. So... https://mysite.com/subsite Other subsites work just fine but this new one is...
View ArticleUsing WebDav as a backup location
Sorry if this is in the wrong section, I assume based on the logs I have a permissions issue.My objective is to use WebDav as a backup location with Symantec System Recovery. I currently am able to...
View Article.well-known directory served only from one host-header iis8.5
Hi All: Perplexing issue here. I have a directory structure like:rootwell-knownotherdirectoryand in IIS i have a website set up with the root pointing at root with multiple hostheaders:web1.website.com...
View ArticleIIS Manager with Smart Card to remote web server?
I'd like to manage a IIS server remotely with the IIS Manager. When selecting "Connect to Server" I get prompted for user name and password, which works fine, however I'd like to use a smart card here...
View ArticleHow to Prevent Anonymous Access but allow a Classis ASP Session to Directory
Using IIS on Windows 2012:I have a classic ASP site. All the pages within the site are .asp files, but I have a few that are HTML in a Virtual Directory and do not have any ASP code in them to prevent...
View ArticleIIS10 on Server2016 & Forcing Cookies to us SSL
Hi,I have a need to force a site to transmit cookies over SSL only. I tried editing the web.config file for the site by adding<httpCookies requireSSL="true" />as I had read in some posts....
View ArticleMissing 'Strict-Transport-Security' header in an internet published web...
Hi, how to add the HSTS header in IIS for a web application this is optional response header that can be configured on the server to instruct the browser to only communicate via HTTPS.
View ArticleClaims-based and Windows Authentication
Hi, I wanted to check if it is possible for a web application to support both Claims-based Authentication and Windows Authentication i.e. if Windows Auth fails then the web application falls back to...
View ArticleError HTTP Error 401.1 - Unauthorized
Hi everyone, I having un problem with authentication integration. My principal Website is the Default Web works without Bind. Below the Default WebSite, there is many virtual directory and application...
View ArticleWeak Protocols Disabled
Dear Team,In our organisation,we have disabled all weak protocols in server 2012 R2 and we have the following issues now.1.Our Internal application running on IIS 8.5 having login issues.ex:-we have...
View ArticleIIS 8.5 Windows Authentication
Hi I have a dotnetcore 2.2 application I am trying to deploy to IIS 8.5 It uses Windows AuthenticationMy IIS settings are:Authentication: Anonymous Authentication Disabled Basic Authentication Disabled...
View ArticleSolution to Run IIS without Admin
As per organization policy, Software should be installed by IT team only so in order to implement this, We have disabled the Admin rights to All users everything is working fine except the .net...
View ArticleTrying to set a Managed Service Accounts in iis Client Certificate Mapping...
Hello,I am trying to add a new AD account of type "Managed Service Accounts" into IIS Web Service Client Certificate Validation using the "IIS Client Certificate Mapping Authentication" One-to-one...
View ArticleApplication pool identity and certificate issue
Hello,Hopefully this is posted in the right spot. We are having trouble with a 2 way SSL setup with our customer. We pinned the problem down to our application pool user and the certificate on our end....
View ArticleA fatal error occurred while creating a SSL client credential. Internal Error...
Hi,There is a change on the client to limit SSL connection to use only use TLS1.1 or TLS1.2 protocol.After the change, the client is unable to connect to the server via HTTPS. HTTP connection is still...
View ArticleWindows 10 IIS - Permission Issues From External Machines
Hi,I have created a simple website in IIS, just a index.htm file. I can browse the page locally usinghttp://localhost but when I try and view the same page anywhere else on the network I get the...
View Article301,302 Custom Response Message
Is there a way in IIS of customizing the 301,302 response body?For example when you access the site without a document name the server responds with a 301 Moved Permanently. Unfortunately it also...
View ArticleIIS 8.0 keep asking credential for google chrome | IE works fine
We have few web server and all are working fine but newly created server with same web application having some issue with google chrome while authenticatingWe have added out site into trusted-sites in...
View Article