Solved

How to get rid of windows authentication box on iis 6.0

Posted on 2004-10-28
2,397 Views
Last Modified: 2009-12-16
I have configured IIS 6 to work with Tomcat 5 on Windows Server 2003. To run JSP pages, i added a virtual directory that points to JSP directory under Tomcat. It is fine along the way until when JSP page is called. It prompt a windows authentication box asking for username and password. How can i get rid of this box? Below is the error i have if i choose to cancel on that box.

#################
HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource.
Internet Information Services (IIS)
#################

I have tried:-
1. Enabled the Anonymous Access under IIS -> Security Directory -> Authentication and Access Control -> Authentication Method. The username by default is IUSR_machinename.

2. Added a new permission for Internet User access right on the virtual directory.

It is urgent, please provide your knowledge on this. Thank you in advance!
0
Question by:stephenlim
    7 Comments
     
    LVL 11

    Expert Comment

    by:ajaikumarr
    Hai,

    Can u please check this... I do not have exposure on Tomcat... But it seems there is an option to set the value request.tomcatAuthentication=false on tomcat.

    Bye...
    Ajai
    0
     
    LVL 11

    Expert Comment

    by:ajaikumarr
    Hai,

    And also please make sure that to recheck the following options

    Enable Anonymous Access & Integrated Windows Authentication & Allow IIS to control password

    Bye
    Ajai
    0
     
    LVL 33

    Expert Comment

    by:humeniuk
    If you're not using IWA, you can just turn it off.  If you are using it, make sure that the anon account has (at least) read permissions for all folders, and also on any relevant executable files related to your JSP pages.
    0
     

    Author Comment

    by:stephenlim
    What is IWA? DOes it cause the authentication windows prompt up? I still cant get it work although i assigned the permission for IUSR_machinename.
    0
     
    LVL 33

    Accepted Solution

    by:
    IWA is Integrated Windows Authentication.  You can check if it's on/turn it off by going to your website properties through Internet Services Manager.  Select the Directory Security tab and click Edit beside "Anonymous access and authentication control".  In the Authentication Methods window that opens, make sure the Anonymous access box is checked and the Integrated Windows authentication box (as well as the basic authentication and digest authentication) boxes are not checked.

    This will eliminate the windows log on prompt, but you still won't have access to the files if your NTFS permissons are not correct - you'll get a 401.5 unauthorized access error instead.  If so, make sure your IUSR account and IWAM account have permissions to access your whole system32 directory (including subfolders).  If this doesn't resolve the problem, download and use Filemon for Windows (www.sysinternals.com/ntw2k/source/filemon.shtml).  It should help isolate exactly which file(s) are returning the unauthorized access error.
    0
     
    LVL 1

    Expert Comment

    by:CyberAdy
    Hi,
    Look at the permissions of the JSP file i am sure it doesnt have enough permissions for IUSR_

    Thanks and Regards
    CyberAdy
    0
     

    Author Comment

    by:stephenlim
    Thanks guys, now is working perfectly! Here to close the posted question.
    0

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone. Privacy Policy Terms of Use

    Featured Post

    Anonabox PRO Tor & VPN Router

    PRO is the most advanced way to fortify your privacy and online anonymity by layering the Tor network with VPN services. Use both together or separately, and without needing to download software onto your devices.

    Suggested Solutions

    Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
    Running classic asp applications under Windows Server 2008 R2 (x64) and IIS 7 is not as easy as one may think. It took me a while to figure it out while getting error 8002801d a few times. After you install the OS you will need to install the fol…
    Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
    This video discusses moving either the default database or any database to a new volume.

    877 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now