Is it an .asp page? If so you have to specifically allowed it under the web services extensions folder of the IIS snap-in
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Lilianstrom Sent: Thursday, January 13, 2005 9:54 AM To: [email protected] Subject: Re: [ActiveDir] IIS 6-Access denied Za Vue wrote: > I have tried "Digest Authentication from Windows domain servers" but I am > still getting the same deny error. > > Yes the account exist locally on the web server and in AD. Same account name locally and in AD? Windows authentication uses the credentials that IE is being run with. Tokens are exchanged between client and server so if IE is being run as domain\user then domain\user needs to have at least read access to the files being served. What does the security log on the web server say? Should be a hint there. Might be a hint in the IIS log as well. I use IIS with windows authentication on several sites and if I do the following everything works. (IE 6 sp1 on XP sp2 clients) 1) NTFS Permissions have to be correct 2) IIS set correctly 3) Windows Auth enabled inside IE 4) The IIS site has been added to the trusted sites inside IE al > Thanks, > Z.V. > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Robert Rutherford > Sent: Thursday, January 13, 2005 9:37 AM > To: [email protected] > Subject: RE: [ActiveDir] IIS 6-Access denied > > Hmmm ... cant say for sure as I haven't got an IIS box to hand. > > You don't want to use integrated windows auth as it will just supply your > domain credentials. ... I think. > > > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Za Vue > Sent: 13 January 2005 14:26 > To: [email protected] > Subject: [ActiveDir] IIS 6-Access denied > > What could be wrong?? > > To access a site I want the users to authenticate with a local user account > and password on the web server. Anonymous is enabled on all other sites. > > Environment: Windows 2000 AD > IIS 6.0 Server: Windows 2003 > > For authentication I checked "Integrated Windows authentication" but the > particular account cannot log in. I am getting a 401.1- Unauthorized: > access > is denied due to invalid credentials. Anonymous Access is not checked. > The > account have READ/Execute access to the parent folder down. > > Thanks, > Z.V. > > > List info : http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: > http://www.mail-archive.com/activedir%40mail.activedir.org/ > > ======================================================================= > Scanned for virus infection by Messagelabs > ======================================================================= > > > List info : http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > > List info : http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ -- Al Lilianstrom CD/CSS/CSI [EMAIL PROTECTED] List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
