Re: IIS Guru Help Please

From: Roger Abell [MVP] (mvpNOSPAM@asu.edu)
Date: 11/27/02 

From: "Roger Abell [MVP]" <mvpNOSPAM@asu.edu>
Date: Wed, 27 Nov 2002 08:08:09 -0700

John,
If you are still following this thread . . .
Does your webservice app need to be in use now ? or will
it be under development / refinement for a while ?
If the first is the case, then buying W2k server now is the
right thing to do, but if the second is the case you might
want to consider finishing the dev / test cycle using the
Windows .Net server public preview release. Windows .Net
server is a _m_u_c_h_ stronger platform for webservices
and framework apps in general, and IIS 6 is far superior
in general and specifically for framework support than is
IIS 5 of W2k.
Your call based on your situation, but if you buy W2k
now you may as well budget for upgrade to Windows.Net
Server 2003 when it is released (current projection 4/03)
if you are serious about doing web services apps. 

--
Roger Abell
MS MVP (Security, Windows), MCDBA,  MCSE both
Associate Expert - Windows XP ExpertZone
http://www.microsoft.com/windowsxp/expertzone
"John" <jonashbaugh@hotmail.com> wrote in message
news:uXnr4IilCHA.2036@tkmsftngp07...
> Well I took your suggestions to heart and have purchased win 2k server. I
> have moved everything over and the authentication is wokring now. Still
not
> sure what the problem is but if xp pro could only handle 10 concurrent
> connections then we needed win 2k. Thanks so much for the help and I truly
> appreciate the input.
>
> "Roger Abell [MVP]" <mvpNOSPAM@asu.edu> wrote in message
> news:eiqhH3dlCHA.1412@tkmsftngp04...
> > Check the login rights granted to this local USeRx
> > It seems to be not allowed, or to be denied, the right
> > to access this computer from the network.  These are
> > two policies that you need to check in the policies of
> > the IIS server box.  Note that the logon rights needed
> > differ based on which auth type is negotiated.
> >
> > Also, once you get past that, if this is the first use on
> > the IIS box of .Net you may run into other problems
> > that did not show on the dev box - again related to
> > the dev box not being tightened (as it should be) as
> > compared to the settings on the IIS production box.
> >
> > Also, remove those mappings from both boxes - if
> > you do not know what they are then you are not using
> > them and they are implicated in past exploit vectors.
> >
> > --
> > Roger Abell
> > MS MVP (Security, Windows), MCDBA,  MCSE both
> > Associate Expert - Windows XP ExpertZone
> > http://www.microsoft.com/windowsxp/expertzone
> >
> > "John" <jonashbaugh@hotmail.com> wrote in message
> > news:esx46PYlCHA.1464@tkmsftngp07...
> > > Hello,
> > >
> > >         Ok I have a weird problem. I am trying to setup basic
> > authentication
> > > for our webservices. The web services are to be accessed by both a
> > website,
> > > residing on same server, and come applications(which are connecting
via
> > the
> > > internet). We are using a XP Pro server. When I setup basic
> authentication
> > > in IIS I can goto a browser and it asks for login and password. That
> > works.
> > > When I try to do it within the application or the website using the
New
> > > System.Net.NetworkCredential("USer", "1") it bombs, giving the
> requestion
> > > failed with HTTP status 401. Access Denied. The weird part is that my
> > laptop
> > > that has been used as my development, which it's identical(or at least
I
> > > thought) to our server, the authentication code works fine. So I made
my
> > > laptop take over as the web server and changed the IP and everything
is
> > > working, so clients can connect and the basic authentication works
fine.
> > It
> > > seems that there is some configuration issue that I am missing on the
> real
> > > server. I noticed that the real server doesn't have the following
> > mappings:
> > > .htw, .ida, .idc, .idq in IIS(I added them to no avail), but none of
> these
> > > seem to link to the .NET framework. So basically it's not a coding
issue
> > as
> > > the code works on my laptop, I just cannot figure out if it's an IIS
> > > configuration issue, since I can login via a browser normally, or if
> it's
> > a
> > > .NET configuration issue and where to begin. Could it be that I
missing
> > > something in the local security policy? Thanks in advance for any
help.
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: WM5 can not sync to exchange
    ... I checked all the authentication settings and they are as you requested. ... After running the internet connection wizard I had to uncheck the Require ... On the SBS 2003 Server open the Server Management console. ... Open IIS Manager ...
    (microsoft.public.windows.server.sbs)
  • RE: WM5 can not sync to exchange
    ... code 85010014 during ActiveSync with SBS. ... On the SBS 2003 Server open the Server Management console. ... Please verify Authentication settings by the following steps. ... Open IIS Manager ...
    (microsoft.public.windows.server.sbs)
  • Re: WM5 can not sync to exchange
    ... On the SBS 2003 Server open the Server Management console. ... Please verify Authentication settings by the following steps. ... Open IIS Manager ... Collect the IIS metabase on Exchange Server and send to me: ...
    (microsoft.public.windows.server.sbs)
  • RE: Confusion on standard security methodologies.
    ... Application will talk to a back-end SQL ... By "back-end," I assume you mean on a different box from IIS? ... If SQL is on a separate box, you won't be able to use NT authentication ... impersonations (meaning that once passed to the IIS server, ...
    (microsoft.public.inetserver.iis.security)
  • Re: Nokia E50 ActiveSync problem with SBS2003 SP2
    ... Open IIS Manager ... Open properties of virtual directory OMA ... Click Start on your SBS server, ... And then please verify Authentication settings by the following steps. ...
    (microsoft.public.windows.server.sbs)