Re: 401.3 Unauthorized: Unauthorized due to ACL on resource
From: Michael Howard [MS] (mikehow@online.microsoft.com)
Date: 08/01/02
- Next message: Michael Howard [MS]: "Re: ADsGetObject"
- Previous message: Michael Howard [MS]: "Re: Can i block the client workstation NIC Mac address ?"
- In reply to: Cas Irvin [MS]: "Re: 401.3 Unauthorized: Unauthorized due to ACL on resource"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Michael Howard [MS]" <mikehow@online.microsoft.com> Date: Wed, 31 Jul 2002 21:10:35 -0700
this is a big subject, check out Designing Secure Web Based Applications for
Microsoft Windows 2000 from MSPress.
-- Cheers, MH This posting is provided "AS IS" with no warranties, and confers no rights. Writing Secure Code - http://www.microsoft.com/MSPress/books/5612.asp "Cas Irvin [MS]" <cirvinonline@microsoft.com> wrote in message news:zAFCeyKOCHA.928@cpmsftngxa08... > Generally, a 401.3 error indicates a permissions issue. > > To elaborate on the suggestions offered. > > What Authentication method are you using? > In the properties of the website, check your security tab and find out what > authentication method you are using. Anonymous? Basic? Integrated? This > will effect what ACL's need to be set for your content. > > Check the ACL's on the content - Check to see what permissions have been > set on the content you are trying to access. If you are using Anonymous, > then you need to make sure that your IUSR_<servername> account has at least > READ permissions to that content. If you are using Basic or Integrated then > you need to make sure that the user accounts that are accessing the content > have at least READ permissions. > > I am curious as to why Netscape would work where IE does not. The last > suggestion was to check IE > Options > Security. Here I think you're > wanting to check to see what security level you are set for. If you choose > Custom and scroll to the very bottom, you will see a setting for User > Authentication. By default, this is set to "Automatic login only in > Intranet zone". Make sure that this is not set to anything else. > > Hope that helps! > > Cas Irvin > IIS Newsgroup Support > > Please do not send email directly to this alias. This is our online account > name for newsgroup participation only. > > This posting is provided "AS IS" with no warranties, and confers no rights. > You assume all risk for your use. © 2001 Microsoft Corporation. All rights > reserved. > > Please remember to subscribe to our security bulletins at > <http://www.microsoft.com/technet/security/notify.asp> >
- Next message: Michael Howard [MS]: "Re: ADsGetObject"
- Previous message: Michael Howard [MS]: "Re: Can i block the client workstation NIC Mac address ?"
- In reply to: Cas Irvin [MS]: "Re: 401.3 Unauthorized: Unauthorized due to ACL on resource"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
