03-09-06 07:49 AM
When you allow anonymous access, IIS still needs to use a user account get
access to the files off the hard disk. So it impersonates a user account. By
default this is IUSR_<machinename> for static files and ASP files, and the
web app pool's identity (by default Network Service) for ASP.NET files.
If these accounts can't get access to the files, the user would be prompted
to supply alternate credentials.
So, I would start by enabling Object Access Auditing in the Local Security
Policy and audit access to the files (or use Filemon from
www.sysinternals.com) and see if either IUSR_<machinename> or the Network
Service account are being denied access to any of your website's files.
Cheers
Ken
<ajj3085@alum.rit.edu> wrote in message
news:1141844315.213037.117740@e56g2000cwe.googlegroups.com...
: Hi all,
:
: Have a wierd problem. I have IIS 6 on Win2k3 Standard, setup for
: anonymous connections only. Its hosting a few web services and web
: sites under the Default web site using Asp.Net 1.1 and 2.0.
:
: The problem is that for some reason it will suddenly decide that it
: wants you to login (both Firefox and IE). If you cancel, you are
: denied access to the page.
:
: Using the IIS Manager to Restart IIS fixes the problem... only to have
: it resurface again some time later.
:
: I believe I was getting this behaviour on IIS 5.1 (winXP) as well.
:
: Any ideas what it might be??
:
: Thanks
: Andy
:
[ Post a follow-up to this message ]
| 
