|
security
newsgroups
|
|||||||||||||||||||||||
|
|||||||||||||||||||||||
HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resourceI have a web application hosted on a Win2K3 server. This is the Default Web Site on the server (I have right cliked on Default Web Site and pointed to a directory within the server). So users can access the application by typing http://servername. I have checked "Integrated Windows Authentication" under authentication methods. Now the problem is whenever a user tries to access the site (http://servername), it prompts for username & password repeatedly inspite of typing in the correct username & password. If user cancels it then the following error is displayed HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource. Internet Information Services (IIS) I can access the web site remotely because I am the Admin for this server. But others can not. Can anyone help on this? Thanks, Ashish. ash***@gmail.com wrote:
Show quote > Hi, Do the users trying to authenticate have NTFS permissions on the directory?> I have a web application hosted on a Win2K3 server. This is the Default > > Web Site on the server (I have right cliked on Default Web Site and > pointed to a directory within the server). > So users can access the application by typing http://servername. > I have checked "Integrated Windows Authentication" under authentication > > methods. > > Now the problem is whenever a user tries to access the site > (http://servername), it prompts for username & password repeatedly > inspite of typing in the correct username & password. If user cancels > it then the following error is displayed > > HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on > the requested resource. > Internet Information Services (IIS) > > I can access the web site remotely because I am the Admin for this > server. But others can not. > > Can anyone help on this? > > Thanks, > Ashish. > I have tried adding "Everyone" to the web directory and giving them
"Full" permission, but it did not work. Is there any other way of giving NTFS permission on the directory? Thanks, Ashish. Chad Mahoney wrote: Show quote > ash***@gmail.com wrote: > > Hi, > > I have a web application hosted on a Win2K3 server. This is the Default > > > > Web Site on the server (I have right cliked on Default Web Site and > > pointed to a directory within the server). > > So users can access the application by typing http://servername. > > I have checked "Integrated Windows Authentication" under authentication > > > > methods. > > > > Now the problem is whenever a user tries to access the site > > (http://servername), it prompts for username & password repeatedly > > inspite of typing in the correct username & password. If user cancels > > it then the following error is displayed > > > > HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on > > the requested resource. > > Internet Information Services (IIS) > > > > I can access the web site remotely because I am the Admin for this > > server. But others can not. > > > > Can anyone help on this? > > > > Thanks, > > Ashish. > > > Do the users trying to authenticate have NTFS permissions on the directory? That kind of error is usually caused by the access right of a folder directory. The solution is very easy. go to your directory folder and right click on it. choose properties and then click on the web sharing. Share this folder and give it a alias. That's it. Good luck.
From http://www.developmentnow.com/g/91_2006_9_0_0_820435/HTTP-Error-401-3--Unauthorized-Access-is-denied-due-to-an-ACL-set-on-the-requested-resource.htm
Posted via DevelopmentNow.com Groups
http://www.developmentnow.com
On Nov 27, 1:10 am, Steven SZE<pfs***@yahoo.com.au> wrote:
> That kind of error is usually caused by the access right of a folder directory. The solution is very easy. go to your directory folder and right click on it. choose properties and then click on the web sharing. Share this folder and give it a alias. That's it. Good luck. The 401.3 is a red-herring in this case because it happens when you> > Fromhttp://www.developmentnow.com/g/91_2006_9_0_0_820435/HTTP-Error-401-3... > > Posted via DevelopmentNow.com Groupshttp://www.developmentnow.com hit "cancel" on the authentication dialog, causing the browser to fall back to anonymous authentication and probably denied by NTFS ACL on the resource, thus returning a legitimate 401.3. Thus, the 401.3 is not interesting because it is in response to you hitting "cancel". The 401 error which caused the user login dialog box to be displayed to begin with is the real problem. Can you report: 1. ALL Authentication protocols checked in IIS for http://servername 2. Any custom ISAPI Filter DLLs installed for the Website. 3. Any custom ISAPI Filter DLLs installed globally for all websites (it's in another dialog box different from #2) 4. The IIS log file entries for the requests that cause the user login dialog box to be initially DISPLAYED. Not the second or third attempts or you hitting cancel. The actual first request that gets denied. I want its status, substatus, and win32 error codes, in particular. Also, please define what you mean by "you can access the site remotely" but "others cannot". When you say "remotely" do you mean from another computer? From across the Intranet? From across the Internet through some proxy servers, firewalls, etc? Network configuration between client and server can affect functionality of authentication protocols. //David http://w3-4u.blogspot.com http://blogs.msdn.com/David.Wang //  |
|||||||||||||||||||||||
Other interesting topics