Re: Anonymous User Password Sync

IIS 7.0 uses built-in IUSR as anonymous account. No more anonymous password
sync issue.
Follow the suggestion and check your IIS 7.0 settings.

--
Regards,
Bernard Cheah
http://www.iis.net/
http://msmvps.com/blogs/bernard/


"Usman Jamil" <usman@xxxxxxxxxxx> wrote in message
news:u9wVYZWFIHA.4880@xxxxxxxxxxxxxxxxxxxxxxx
Hi

In IIS 5 , while creating websites programatically, i set the anonymous
pass sync (Allow iis to control password) property to true, due to which I
dont have to reset the password for anonymous user even if someone changes
the password from user manager under windows. In IIS 6, I repeated the
same to allow IIS to control password for anonymous users. But now I cant
find this property in IIS 7. So far as long as I dont mention username
along with the "password" while setting Anonymous user, the site or
virtual directory give me following error

Error Summary
----------------
HTTP Error 401.2 - Unauthorized
You are not authorized to view this page due to invalid authentication
headers.

Detailed Error Information
---------------------------
Module IIS Web Core
Notification AuthenticateRequest
Handler StaticFile
Error Code 0x80070005

Requested URL http://oct23domain1.com:80/admin
Physical Path C:\Program Files\Advanced Communications\Hosting
Controller 7C\Web
Logon Method Not yet determined
Logon User Not yet determined


Most Likey Causes:
---------------------

No authentication protocol (including anonymous) is selected in IIS.
Only integrated authentication is enabled, and a client browser was used
that does not support integrated authentication.
Integrated authentication is enabled and the request was sent through a
proxy that changed the authentication headers before they reach the Web
server.
The Web server is not configured for anonymous access and a required
authorization header was not received.
The "configuration/system.webServer/authorization" configuration section
may be explicitly denying the user access.


Can someone please tell me how can I avoid giving password for every
anonymous user that I set. I have a scenario where I can't give passwords.

Regards

Usman Jamil



.

Relevant Pages

  • Re: HELP PLEASE The request failed with HTTP status 401: Access Denied.
    ... Web Security: Part 2: Introducing the Web Application Manager, Client ... Authentication Options, and Process Isolation ... It introduces the Web Application Manager in IIS that ... logon session, which is dangerous. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • RE: Can no longer access ActiveSync
    ... OMA and Exchange/Exchange-OMA virtual directory. ... Please verify Authentication settings by the following steps. ... Open IIS Manager ... issue may be caused by the Exchange attribute of original user account. ...
    (microsoft.public.exchange.admin)
  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... I didn't realise the Web Sites folder in IIS manager threw up a global ... sure that Basic Authentication is allowed to function on your server. ... ACCOUNTNAME, this is the account that I am trying to grant access to: ... Account: COMPUTERNAME\ACCOUNTNAME Access type: FULL ...
    (microsoft.public.inetserver.iis.security)
  • Re: SBS2k3 and activesync over the air
    ... the Exchweb virtual directory. ... ONLY 'Basic authentication' is selected ... please restart your IIS service and test your issue again. ... Regarding ActiveSync issue, support code 0x85010014 means error HTTP 500. ...
    (microsoft.public.windows.server.sbs)
  • Re: How can I set "remote_user" in ISAPI filter/Extension?
    ... HSE_REQ_EXEC_URL (ISAPI Extension functionality) is able to change the ... - ISAPI Filter requires Basic authentication configured, ... I have checked the new feature of IIS 6 Extension. ... No. Server Variables are read-only entities representative of the ...
    (microsoft.public.inetserver.iis.security)