IIS Security

I want to run two versions of a web application on the same server, on two different websites. The only difference is that I want to run one with Windows Integrated authentication, and one with Basic plus SSL. The first ...

Hi, I have two machines that are on the internet that can share files between them. They are otherwise firewalled.They are not on the same domain, but they can see each other and share files in windows. They are p1 and p2. p1 shares the directory pics with p2. p2 logs in as ...

A web site w/ ASP script was running normal on Web Server w/ win2k Server at the beginning stage few years ago. Then found it was hacked or homepage was changed by hacker occassionally last years. The outsource webpage designer suspected that internal network ...

I have Windows 2003 in a domain and running a web application on it (Sharepoint). I have IIS's authentication set to Windows Integrated Authentication. I was looking for users to be able to login automatically to the web application using the credentials that they used to login to their computers. ...

Hi everybody, I'm running a windows 2003 server with IIS6. My server’s certificate has some CRL distribution point defined. By default the CRL is valid for 1week. I would like to know how to get the a new CRL every 1 hour ? ...

hello, We have a win2k3/iis6 member server.  I've created a new anonymous user which works fine.  I've created a group on the member server, not a domain group, for all accounts that need anonymous access including the new anon ...

Hello, I am managing a secure site using IIS running on Windows server 2003. I noticed that my secure site is also accessable via HTTP. How do I disable HTTP and force users to only use HTTPS when logging in? ...

Hello, I am trying to get username information by using User.Identity.Name.ToString, if i logged in with username to given network place, it is ok! It returns SERVERNAME/username. Otherwise if I logged in with "name.surn***@SERVERNAME.com" it again ...

Have a Windows 2003 SP1 server with Virtual Server 2005 R2 installed. Have the problem, that Windows Authentication doesn't work at all when connecting to the Virtual Server Administration Website: Getting Error 500 - internal Server error. When configuring the site with "Basic Authentication", the ...

I am planning on posting our public website on IIS running under Windows Server 2003 R2.   Can anyone point me at any good sites or white papers for the best practices for securing the site for public access?   I am planning ...