RE: Anonymous logon and ISAPI in IIS 5

From: Alex (Alex_at_discussions.microsoft.com)
Date: 09/28/04

• Next message: Phil Borod: "Re: access to HTML data"
• Previous message: Steven: "Private to Public..."
• In reply to: Alex: "Anonymous logon and ISAPI in IIS 5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Mon, 27 Sep 2004 15:49:05 -0700

Never mind, I solved this problem. I forgot that MyIsapi.dll uses some other
dlls. When I checked NTFS permissions on those, anonymous users didn't have
access. I changed permissions to allow "Everyone" read and execute access
and the thing started working.

"Alex" wrote:

> Hi. I have a website configured for windows integrated authentication with
> Anonymous access enabled (using default IIS anonymous user account). On this
> website I have "isapi" sub-folder and in it "MyIsapi.dll". Directory/file
> security for both is the same as for the rest of the site. NTFS permissions
> for "MyIsapi.dll" allow all access to Everyone group. I think with these
> settings Anonymous logon should be possible, but it's not. When I connect to
> isapi dll using Internet Explorer from a machine other than the server, I get
> 401.3 error - "Access denied by ACL on resource". A couple of other
> quirks... The server runs Windows 2000 server. It's a domain controller and
> part of a 2-machine Microsoft cluster. Active directory is enabled and
> that's where all user accounts are configured. The Web site is a clustered
> resource. So is the disk on which the files for the web site are located. It
> is a local disk, i.e. web site doesn't point to any shares. I am able to
> access all other files on the site, but IIS refuses to load MyIsapi.dll
> anonymously.
>
> If I connect from the server machine, it works and MyIsapi.dll is loaded
> into memory. After that I can connect anonymously from other machines, until
> IIS is restarted or decides to clear MyIsapi.dll from memory cache for some
> reason.
>
> Is anything wrong with my security settings? Please help!!! I appreciate
> any suggestions.
>
> Thank You very much

---

• Next message: Phil Borod: "Re: access to HTML data"
• Previous message: Steven: "Private to Public..."
• In reply to: Alex: "Anonymous logon and ISAPI in IIS 5"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Website allows everyone in, not matter what ... What are the NTFS permissions for the file/folder in question? ... NTFS Permissions are set so that only members of a particular group can ... User goes to part of my web site and it ... means they got in with a valid username/password. ... (microsoft.public.inetserver.iis.security) Re: Website allows everyone in, not matter what ... issue when using Coldfusion MX and IIS with NTFS permissions set. ... CF will bypass the NTFS permissions and allow ANY user to view ... should see a check box that says something about allowing anonymous access. ... access rights for different users on a web site. ... (microsoft.public.inetserver.iis.security) Re: Always prompted for username and password while sibmitting a form ... Make sure you have NTFS permissions set correctly. ... Web server will honor ... NTFS permissions even if you set "Anonymous access" in IIS (web site ... to all your files that are connected to your website and your forms. ... (microsoft.public.inetserver.iis.security) Re: IIS root ... Thanks Jeff. ... > folders in NTFS permissions. ... i want to allowed Anonymous access to the default web site. ... (microsoft.public.inetserver.iis.security) Problem with Anonymous access ... im trying to make our istitutional site visible to anonymous users and ... private site only to authenticated users. ... (entire web site) ... immediatly the authentication. ... (microsoft.public.sharepoint.portalserver)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)