URL rewrite from proxy without SSL Offloading to secure SSL backend service
I have a particular requirement where IIS has to act as reverse proxy for a backend proxy . IIS will negotiate the inbound traffic from internet over SSL via third party signed certificates. In turn...
View ArticleAdding users to IIS_IUSRS
Is it acceptable to add (domain) users to the IIS_IUSRS group? Is it best practice? Thanks!
View ArticleWhat is the object EVERYONE in ACLs? It really means EVERYONE? Even IIS App...
What is the object EVERYONE in ACLs? It really means EVERYONE? Even IIS App Pools?I have a folder, full of files, in my IIS 8 WebServer and an ASP app running, uploading file to the folderCurrent ACL...
View ArticleDoes iis cash the windows authentication use name or any other AD attributes?
Hello all,Does iis cash the windows authentication use name or any other AD attributes?I am using iis 7.0 on windows 2008 R2, I enabled windows authentication on my iis website, when the AD admin...
View ArticleStop bots from trying to access files on server
Read a lot of articles. Have blocked several IP addresses using Windows firewall advanced security on the server and set IP restrictions on IIS.There were bots trying to access on existent files...
View ArticleIWA/Kerberos Authentication fails on HA WebAdapters when the site in IIS is...
We have a load balancer in front of these IIS-based WebAdapters. Disabling "Extended Protection" under Windows authentication, advanced settings, will allow Kerberos to authenticate and pass...
View ArticleClik here to view.
IIS Client Certificate Mapping/Authentication Does Not Appear to Work...
Hi,Apologies in advance for the length, but I wanted to thoroughly document my analysis of this issue.I have spent an inordinate amount of time (weeks and weeks) Googling/researching/testing/debugging...
View Articleipsecurity for binding instead of location
I have a site in IIS 7.5 that uses multiple bindings to display content on separate domains. I want to be able to use ipsecurity to restrict access to one of these domains/bindings. Normally, I could...
View ArticleThe url to download URLScan is no longer available
I tried to download the setup MSI file for UrlScan 3.1 from one of following URL but failed.x86: https://www.microsoft.com/downloads/details.aspx?FamilyID=ee41818f-3363-4e24-9940-321603531989x64:...
View ArticleYou don't currently have permission to access this folder
Hello, I have a problem.When I use IIS, Log files save default path that %SystemDrive%\inetpub\logs\LogFiles.So, I move the path(%SystemDrive%\inetpub\logs\LogFiles) and see W3SVC1 folder.Double click...
View ArticleDoes URLRewrite support scripts or command lines to realize one click...
I have used URLRewrite tool to remove "Server", "X-Powered-By", "X-AspNet-Version" from response headers. However, consider about deploying automatically, can I do the same thing by scripts or command...
View ArticleActive Directory Authentication issue for IIS
Hi,I'm having a up and running web based system which authenticats users from the active directory. IIS hosted in a server pc and AD is in a normal PC which runs server OS. This works fine for past 4...
View ArticleFTPS filezilla 3.24 "Key usage violation in certificate has been detected."
Hi,I'm using FTPS to protect access to IIS FTP services, with self signed certificates. Starting from version 3.24, filezilla reports that "Key usage violation in certificate has been detected."...
View ArticleClik here to view.
site bindings sharing SSL cert
Good afternoon, I have a 2016 server that is hosting a ton of sites. One of the sites have multiple site bindings with each its own SSL certificate. But 3 of these sitebindings will always share the...
View ArticleSetting permissions with no risk?
Hi allI have been seaching for days and hours to find an answer that I can understand without getting confused :DMy sites are running perfectly and no errors but however, i'm a little worried about the...
View ArticleIIS Pass through
HiI set up a new IIS server and a website, I can browse the website using the localhost from any domain joined PC, as long as I am logged on with my AD credentials it passes me through without...
View ArticleOne IIS server ask credentials other accept windows authentication
Hi,Any advises how to troubleshoot the authentication issue on the IIS (W2012R2). In my mind I have two servers with equal setup, but one server does handle the windows authentication (?) correctly....
View ArticleHow to make http requests to your web api hosted in iis from your phone's...
I have been trying to make web API requests to my asp.net core 2.2 web API that is hosted in IIS. I can get back results when I use 'example.com:50056/api/Vehicle/GetCarpaint' from my browser. However...
View ArticleHow to use Strong cipher
Hi Microsoft Expert,We had taking out 'weak' ciphers and intend to use the stronger ciphers like TLS_ECDHE_ECDSA* and TLS_DHE_DSS*, but server doesn’t seems to support.#removed...
View ArticleIIS Logs - Unknown value in sc-substatus
Our company synchronizes IIS logs with other intrusion control systems.I try to figure out how to recognize all bad login attempts from IIS logs. I tried to parse them out manually with grep throught...
View Article