Solved

HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

Posted on 2006-12-01
8
5,292 Views
Last Modified: 2008-12-20
Hello

I have recently built a Software Update Service server on Windows 2003.

When I am trying to launch the config page (http://<machine_name>/SUSAdmin), I receive the following error;

You are not authorized to view this page
You do not have permission to view this directory or page due to the access control list (ACL) that is configured for this resource on the Web server.
HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

The IIS version is 6.0. Anonymous access is being used with IUSR_<machine_name> account.

Any IIS gurus out there to help?
0
Comment
Question by:Dilan77
  • 4
  • 4
8 Comments
 
LVL 10

Expert Comment

by:AndresM
ID: 18053358
see if IUSR_<machine_name> has READ permissions under the directory where is configured /SUSAdmin
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053381
Do you mean the directory in C or D drive, or the directory of the web content?
0
 
LVL 10

Expert Comment

by:AndresM
ID: 18053406
I mean NTFS permissions. To see wich directory is configured under /SUSAdmin, open IIS manager, right-click SUSAdmin virtual dir, and choose Open. Then see if IUSR_<machine_name> has read permissions on that folder.
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053720
Thanks.

The user wasn't there, I added the user and gave it READ writes, however I'm still getting this error.
0
IT, Stop Being Called Into Every Meeting

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

 
LVL 10

Accepted Solution

by:
AndresM earned 500 total points
ID: 18053737
In IIS MMC, in the properties of the virtual dir SUSAdmin, security tab, what happens if you configure only windows authentication?
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053818
that seems to work...excellent.

is there any downside to keeping at this (apart from the need to log into the SUS site, which is not necessarily a bad thing)?
0
 
LVL 10

Expert Comment

by:AndresM
ID: 18053849
No, it depends on your needs, but I think that a SUSAdmin site should have windows authentication, not anonymous, for security reasons. I would also restrict NTFS permissions to admins only, or something like that.
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053883
Brilliant, thanks a lot for the prompt help
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video discusses moving either the default database or any database to a new volume.

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now