Solved

IIS6.0 UNC Shared Virtual Directory 401.3 Error

Posted on 2004-04-29
6
758 Views
Last Modified: 2013-12-04
Hey all,

I have the current setup:
- Web server (machine name "server") IIS6.0 Windows2003
- Web server has a header of "users.domain.com"
- Virtual directory named "Test"
- Virtual directory has passthru credentials enabled (the Always user the authenticated user's credentials when validating access to the network directory is checked)
- Virtual directory pointing to \\shares\Users
- Virtual directory has anon access removed
- Only Windows Authentication is enabled

- File server (machine name "shares") running Windows2003
- Share of "Users" has Everyone permissions and security set to Full Control

Both of these machines are in the same domain.

When I try to access http://users.domain.com/Test I get a credentials box which I fill out w/ the Administrator's credentials.  However, after that I'm greeted by 2 more attempts which then lead to a 401.3 error.  Does anyone know why on earth I can not for the life of me get access to that UNC share through a web browser?  Is there a local security policy that I have to set?  When I add the share to the "Shares that can be accessed anonymously" list, then I can get through, however the user is not the authenticated user, it's the ANON USER.

Thanks!
0
Comment
Question by:TivexExchange
6 Comments
 
LVL 4

Expert Comment

by:matalyn1016
ID: 10956274
Ok, this is a lot of reading but well worth it and it answers your question. - http://www.serverwatch.com/tutorials/article.php/3113161
0
 

Author Comment

by:TivexExchange
ID: 10964419
Right... I just don't understand how i'm applying FULL PERMISSIONS to Everyone both on the share and on the file system and yet I'm still getting 401.3 errors.  It would be really handy to see what exactly is being checked for and the credentials that are being used....
0
 
LVL 4

Accepted Solution

by:
WerewolfTA earned 250 total points
ID: 11597544
I'm guessing you're using this like an Intranet site, right?  We had a similar issue here.  Even though we were pointing to http://servername.domainname, which was clearly on our internal domain as the domain name ended in .local, the browser would treat it like it was in the Internet Security Zone, and refuse to pass AD credentials, prompting for logins and in some cases still refusing to let us into certain locations.  We added *.servername.domainname into the Local Intranet security group in IE, and everything cleared up.  After that, we set the same thing through Group Policy and now everyone gets the permissions they're supposed to as set with ntfs permissions on various folders using their cached credentials, no login prompts.
0

Featured Post

NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A quick step-by-step overview of installing and configuring Carbonite Server Backup.
VM backups can be lost due to a number of reasons: accidental backup deletion, backup file corruption, disk failure, lost or stolen hardware, malicious attack, or due to some other undesired and unpredicted event. Thus, having more than one copy of …
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question