Anonymous User Password Sync

From: "Usman Jamil" <usman@xxxxxxxxxxx>
Date: Tue, 23 Oct 2007 16:17:44 +0500

Hi

In IIS 5 , while creating websites programatically, i set the anonymous pass
sync (Allow iis to control password) property to true, due to which I dont
have to reset the password for anonymous user even if someone changes the
password from user manager under windows. In IIS 6, I repeated the same to
allow IIS to control password for anonymous users. But now I cant find this
property in IIS 7. So far as long as I dont mention username along with the
"password" while setting Anonymous user, the site or virtual directory give
me following error

Error Summary
----------------
HTTP Error 401.2 - Unauthorized
You are not authorized to view this page due to invalid authentication
headers.

Detailed Error Information
---------------------------
Module IIS Web Core
Notification AuthenticateRequest
Handler StaticFile
Error Code 0x80070005

Requested URL http://oct23domain1.com:80/admin
Physical Path C:\Program Files\Advanced Communications\Hosting Controller
7C\Web
Logon Method Not yet determined
Logon User Not yet determined

Most Likey Causes:
---------------------

No authentication protocol (including anonymous) is selected in IIS.
Only integrated authentication is enabled, and a client browser was used
that does not support integrated authentication.
Integrated authentication is enabled and the request was sent through a
proxy that changed the authentication headers before they reach the Web
server.
The Web server is not configured for anonymous access and a required
authorization header was not received.
The "configuration/system.webServer/authorization" configuration section may
be explicitly denying the user access.

Can someone please tell me how can I avoid giving password for every
anonymous user that I set. I have a scenario where I can't give passwords.

Regards

Usman Jamil

.

Follow-Ups:
- Re: Anonymous User Password Sync
  - From: Bernard Cheah [MVP]
- Re: Anonymous User Password Sync
  - From: Ken Schaefer

Prev by Date: Re: how to setup IIS to authenticate users via private key?
Next by Date: Re: SSL certificates and multiple websites
Previous by thread: how to setup IIS to authenticate users via private key?
Next by thread: Re: Anonymous User Password Sync
Index(es):
- Date
- Thread

Relevant Pages

Re: Anonymous User Password Sync
... "Usman Jamil" wrote in message ... In IIS 5, while creating websites programatically, i set the anonymous pass sync property to true, due to which I dont have to reset the password for anonymous user even if someone changes the password from user manager under windows. ... You are not authorized to view this page due to invalid authentication headers. ...
(microsoft.public.inetserver.iis.security)
Re: IIS 6.0 with delegation occassionally not working when IIS accesses NT4 machines files
... This is either basic authentication or anonymous. ... Make sure the you turn off "allow IIS to control the password". ... flag is set IIS doesn't get outbound credentials when it logs on. ... If the authenticated user (basic or anonymous user) is a local ...
(microsoft.public.inetserver.iis.security)
Re: Anonymous User Password Sync
... Follow the suggestion and check your IIS 7.0 settings. ... dont have to reset the password for anonymous user even if someone changes ... No authentication protocol is selected in IIS. ...
(microsoft.public.inetserver.iis.security)
Re: Website Authentication
... authentication just before I got your message. ... >IIS probably no longer has the Anonymous User password. ... >content in the webroot (Read to read files, Execute to ...
(microsoft.public.inetserver.iis)
Re: HELP PLEASE The request failed with HTTP status 401: Access Denied.
... Web Security: Part 2: Introducing the Web Application Manager, Client ... Authentication Options, and Process Isolation ... It introduces the Web Application Manager in IIS that ... logon session, which is dangerous. ...
(microsoft.public.dotnet.framework.aspnet.security)