oxygen_728
asked on
Anonymous Website Access.... User issues
I have a website running on windows server 2003.
I setup some ftp accounts for FTP access, and I gave them modify/read/execute permissions for the web directory.
I also have the typical IUSR_HOSTNAME user that is setup by default to handle anonymous web access
I also setup an InternetGuest Group and IGuest User
When i go into the directory security of my website (through IIS manager), It asks me which account to use for anonymous access.
If I input one of my FTP accounts, then my website is viewable.
If I input IUSR_HOSTNAME, the website is not viewable (401.1 error - invalid credentials)
If I input IGuest, the website is not viewable (401.1 error - invalid credentials)
Just for fun, I promoted IGuest - I went into windows explorer and set the directory security settings there to allow modify/read/execute for InternetGuest users.
So, from my point of view it looks like IGuest and FTPUSERS have the same 'security' settings for this folder (the web folder)
Through the Local Security Policy Settings, I verified that IGuests have network access -- funny thing -- FTPUSERS aren't listed.
Any tips on how I can get IUSR_HOSTNAME or IGuest to work for anonymous access? I don't like having to put my FTP users in there (who have modify access!)
Thanks
I setup some ftp accounts for FTP access, and I gave them modify/read/execute permissions for the web directory.
I also have the typical IUSR_HOSTNAME user that is setup by default to handle anonymous web access
I also setup an InternetGuest Group and IGuest User
When i go into the directory security of my website (through IIS manager), It asks me which account to use for anonymous access.
If I input one of my FTP accounts, then my website is viewable.
If I input IUSR_HOSTNAME, the website is not viewable (401.1 error - invalid credentials)
If I input IGuest, the website is not viewable (401.1 error - invalid credentials)
Just for fun, I promoted IGuest - I went into windows explorer and set the directory security settings there to allow modify/read/execute for InternetGuest users.
So, from my point of view it looks like IGuest and FTPUSERS have the same 'security' settings for this folder (the web folder)
Through the Local Security Policy Settings, I verified that IGuests have network access -- funny thing -- FTPUSERS aren't listed.
Any tips on how I can get IUSR_HOSTNAME or IGuest to work for anonymous access? I don't like having to put my FTP users in there (who have modify access!)
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The answer to my question is:
In my fresh installation of Windows Server 2003 SP1, It is necessary for the user to be used for anonymous website access to have a password. I had purposely setup that user to not have a password (blank). Setting a password fixes it.
In my fresh installation of Windows Server 2003 SP1, It is necessary for the user to be used for anonymous website access to have a password. I had purposely setup that user to not have a password (blank). Setting a password fixes it.
ASKER
The IUSR_Hostname has read/execute permissions in the home directory.
Also, the IIS installation is fresh already...
Thanks for your help, any other tips?