Re: IIS 6 & UNC Share Scurity Issue

Ok.
Now try this:

* Go to the admin tool for cluster (cluadmn)
* In the Resource Share that contain the files of the web site add this
permission:
rcareyad Read
* Go to the node of the file server that have the resource, and check with
server admin tool that the permission was applied to the share locally
* On other machine try to map the share with this user credentials:
net use * \\cluster\sharename /U:Domain\rcareyad

Now try again to see the website with that user running the procmon.



Saludos!

"Rob C." <RobC@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:D2EC329E-0550-4799-8C6E-2A5E64859242@xxxxxxxxxxxxxxxx
I have looked at this program. it shows me that I get an "Access Denied"
error to the folder that I have changed the rights on.
The access is being denied is for the account rcareyad, this account does
have full NTFS right on the folder (http://stieurl.domain.com/_Secure).
The
_Secure folder is where the rights are changed.

I think it is something to do with the account used in the login as:
within
IE for the UNC path (Same account being used for the application pool),
being
removed access to the _secure folder. I would assume that the login would
prompt like it is, but using an account that has the right NTFS
permissions
get the error. I would think something to do with multiple authentication
or
not "impersonating" correctly?



"Pablo A. Allois" wrote:

Please, make the troubleshooting with procmon, to see more exactly what
is
the problem.

Saludos!

"Rob C." <RobC@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:480E20C0-4E20-4032-B096-843357E4E5C0@xxxxxxxxxxxxxxxx
Thanks for your reply Pablo!

I am and have been able to get the configuration to work that you
mention
in
the first part / Guide.
It is when I try to secure the folder so that the clients would need to
login using a different account rather then the one that is being used
for
anonymous access (Connect as: account) due to removing that account
from
the
NTFS rights on the share. I have tried about everything and am now
going
to
look at different options. Currently out IIS boxes are 32bit and the
file
cluster is 64 bit and all are VM's inside VMware ESX 3.5. Although I
dont
think any of this should matter.

What are others doing to create a central IIS web services? We have
multiple
sites and would like to ensure they are all redundant. I thought that
having
multiple front end servers connected to a back end cluster would be
simple,
this way we did not need to worry about data replication or what boxes
the
clients connected to to do the updates.
Any one have any suggestions?

Thanks again for your time folks.






.

Relevant Pages

  • Re: dts and access db
    ... How can I setup permission for sa account under \\server\data folder? ... The service account for SQL Server ... >>already opened exclusively by another user, or you need permission to view ...
    (microsoft.public.sqlserver.dts)
  • RE: IIS anonymous access
    ... Since your asp page only needs to read the file from the unix folder, I'd suggest you can only grant the read permission to this domain account on ...
    (microsoft.public.inetserver.iis.security)
  • RE: User name password dialogue box
    ... If you site doesn't grant the permission to one account and disable the ... Right-click the 1033 folder to open the folder property dialog. ...
    (microsoft.public.sharepoint.portalserver.development)
  • Re: Win XP assigns me new "user" folder - creates problem - how can I get it to use my old "
    ... I set it up to allow EVERYONE to have read and execute permission but ... I looked at another account and copied the permissions on that account ... I did the same for my user folder. ... to load my personal settings and log me in... ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: IIS 6 & UNC Share Scurity Issue
    ... after adding the account to the cluster resource ... the rights do appear under the sharing / security tab. ... error to the folder that I have changed the rights on. ...
    (microsoft.public.inetserver.iis.security)