IIS Server Security - IIS 6.0 Website requests authentication - anonymous is checked

This is Interesting: Free IT Magazines  
Home > Archive > IIS Server Security > June 2005 > IIS 6.0 Website requests authentication - anonymous is checked





You are viewing an archived Text-only version of the thread. To view this thread in it's original format and/or if you want to reply to this thread please [click here]

Author IIS 6.0 Website requests authentication - anonymous is checked
clrscr@gmail.com

2005-06-22, 5:57 pm

Server: Windows 2003 Standard with Exchange 2003

I installed an SSL certificate on my Exchange site in IIS and checked
"require SSL". Of course this made it impossible to reach the site
on port 80 so I changed the TCP port to 8080 and created another site
to simply forward the port 80 request to my https exchange site. I have
anonymous access enabled on the Exchange Forward site.

But it still asks me to authenticate to access the Exchange Forward
site so people are authenticating before they get to SSL which defeats
the purpose.

I changed it to forward to google.com with the same result so it
doesn't have anything to do with NTFS permissions or doesn't seem
to.

Anyone have any ideas?

Thanks in advance.

Bernard Cheah [MVP]

2005-06-26, 2:47 am

If you click cancle while it prompts you for login what error do you get?
401.3 ? if yes, then make sure the default anonymous user
(iusr_computername) has READ permission on the requested file.

--
Regards,
Bernard Cheah
http://www.microsoft.com/iis/
http://www.iiswebcastseries.com/
http://www.msmvps.com/bernard/


<clrscr@gmail.com> wrote in message
news:1119453887.557126.56060@g47g2000cwa.googlegroups.com...
> Server: Windows 2003 Standard with Exchange 2003
>
> I installed an SSL certificate on my Exchange site in IIS and checked
> "require SSL". Of course this made it impossible to reach the site
> on port 80 so I changed the TCP port to 8080 and created another site
> to simply forward the port 80 request to my https exchange site. I have
> anonymous access enabled on the Exchange Forward site.
>
> But it still asks me to authenticate to access the Exchange Forward
> site so people are authenticating before they get to SSL which defeats
> the purpose.
>
> I changed it to forward to google.com with the same result so it
> doesn't have anything to do with NTFS permissions or doesn't seem
> to.
>
> Anyone have any ideas?
>
> Thanks in advance.
>


Sponsored Links






Free braindumps | Software forum | Database administration forum

Copyright 2003 - 2008 webservertalk.com