Thanks again for all these thoughts. *For C)*, I'm running exactly the same URL from a browser (Chrome) on the server running CF 11 - Production Secure Profile and also tried the Icognito window without any issue. But by clicking the 'Run (play)' button next to the scheduled task in CF admin it completes the task immediately with an entry added into CF http.log with status code 401.
I also went back to IIS and changed the application pool setting of that site. In the advanced settings I changed the identity from ApplicationPoolIdentity to a local Windows login with administrator privileges. That actually fixed the IIS warning I previous saw: [image: Inline image 1] However when I clicked the button to run the scheduled task from CFAdmin with or without specifying username and password, still got no luck. Like you said, it is probably not to do with IIS as long as I can run it from browser on the CF server in incognito mode. The last thing I haven't try is to reboot ColdFusion. Since this is a production server, I will have to wait until later tonight. I'm not sure it will make any difference but I doubt it has anything to do with it. *For D)*, it looks like I have to try this option. When you said create a new site, do you mean create an exactly same site pointing to the same web root as the existing one but just specify a different port on that server and use it to run the scheduled tasks? Thanks, Xiaofeng On Tue, Nov 17, 2015 at 1:11 PM, Charlie Arehart <charlie_li...@carehart.org > wrote: > Well, I have four thoughts for you to consider: > > A) Focusing on it first as a scheduled task in CF, if the request works > from a browser (including one like an incognito window) and yet it does not > work in the scheduled task mechanism—for the exact same URL—then I would > think there should be no problem with IIS. If there were, the request from > the browser wouldn’t work. > > And CF would not itself cause the request to act differently in requesting > the URL than the browser would—other than not being able to do Windows > auth, which you’ve proven with the incognito window is not the problem. > > As such, I don’t know what is making that fail. > > B) As for the rest of your note, well, you can add authentication info in > the app pool (in its advanced settings page), as well as at the site level > (in its advanced settings page). Again, though, if the request works from a > browser, then I’d not think you have a problem in IIS. > > I’ll just say that one can get lost in the weeds of permissions in IIS, at > the app pool, site, and folder levels. If you’re needing to do all that > sort of tweaking just in order for things to work, it could be sticky > finding a solution. (But gain, if it works in a browser, then I’d not see > how any such permissions issues would change how the EXACT SAME URL works > from CF.) > > C) Actually, I just had a thought: when you say you are running the URL in > a browser, are you running that browser on the same machine where CF is > running? If not, beware that you may have a DNS or other issue, where the > domain in the URL may resolve differently from your workstation to the > destination server, than it may from the CF server to itself. (I’m assuming > that the scheduled task URL is a CFM page running on your own server, since > you’re looking at IIS with regard to it.) > > If you try the URL from a browser on the server running CF, is it the same > issue? And in an incognito or private window? > > D) If that’s not it, one more thought (which I’ve seen work before) would > be to try creating a new site (and a new app pool) and seeing if you (in a > browser) and then CF (as a sched task) could access the URL. You may need > to come up with a new IP, domain name, or port to use for the bindings to > distinguish it from the existing site. If it then worked, then you could > consider how this new site and app pool may differ from the failing one, if > perhaps you or someone else has been doing some tinkering with settings. > > If that’s not helpful, I’m afraid I’m out of ideas for now. > > /charlie > > > > *From:* cfaussie@googlegroups.com [mailto:cfaussie@googlegroups.com] *On > Behalf Of *Xiaofeng Liu > *Sent:* Monday, November 16, 2015 5:45 PM > *To:* cfaussie@googlegroups.com > *Subject:* Re: [cfaussie] CF11 Scheduled Task Not Running - 401 > Unauthorized > > > > Hi Charlie, > > > > Thanks for offering the tips of testing from "incognito and private > window". I tried both and both of them did not prompt me for > authentication. So I am able to run the scheduled task even from there > without problem. > > > > Back to IIS, from the Basic Settings I can see the site is using > "Pass-through authentication" - ApplicationPoolIdentity. Basically I got > "Anonymous Authentication" turned on already. I also noticed that there is > an warning (exclamation mark) for Authorization which says "Cannot verify > access to path - [webroot of the site]". > > <snip> > > -- > You received this message because you are subscribed to the Google Groups > "cfaussie" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to cfaussie+unsubscr...@googlegroups.com. > To post to this group, send email to cfaussie@googlegroups.com. > Visit this group at http://groups.google.com/group/cfaussie. > For more options, visit https://groups.google.com/d/optout. > -- Best regards, Xiaofeng,^_^ -- You received this message because you are subscribed to the Google Groups "cfaussie" group. To unsubscribe from this group and stop receiving emails from it, send an email to cfaussie+unsubscr...@googlegroups.com. To post to this group, send email to cfaussie@googlegroups.com. Visit this group at http://groups.google.com/group/cfaussie. For more options, visit https://groups.google.com/d/optout.
