Solved

HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

Posted on 2006-12-01
8
5,307 Views
Last Modified: 2008-12-20
Hello

I have recently built a Software Update Service server on Windows 2003.

When I am trying to launch the config page (http://<machine_name>/SUSAdmin), I receive the following error;

You are not authorized to view this page
You do not have permission to view this directory or page due to the access control list (ACL) that is configured for this resource on the Web server.
HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

The IIS version is 6.0. Anonymous access is being used with IUSR_<machine_name> account.

Any IIS gurus out there to help?
0
Comment
Question by:Dilan77
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 10

Expert Comment

by:AndresM
ID: 18053358
see if IUSR_<machine_name> has READ permissions under the directory where is configured /SUSAdmin
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053381
Do you mean the directory in C or D drive, or the directory of the web content?
0
 
LVL 10

Expert Comment

by:AndresM
ID: 18053406
I mean NTFS permissions. To see wich directory is configured under /SUSAdmin, open IIS manager, right-click SUSAdmin virtual dir, and choose Open. Then see if IUSR_<machine_name> has read permissions on that folder.
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 
LVL 2

Author Comment

by:Dilan77
ID: 18053720
Thanks.

The user wasn't there, I added the user and gave it READ writes, however I'm still getting this error.
0
 
LVL 10

Accepted Solution

by:
AndresM earned 500 total points
ID: 18053737
In IIS MMC, in the properties of the virtual dir SUSAdmin, security tab, what happens if you configure only windows authentication?
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053818
that seems to work...excellent.

is there any downside to keeping at this (apart from the need to log into the SUS site, which is not necessarily a bad thing)?
0
 
LVL 10

Expert Comment

by:AndresM
ID: 18053849
No, it depends on your needs, but I think that a SUSAdmin site should have windows authentication, not anonymous, for security reasons. I would also restrict NTFS permissions to admins only, or something like that.
0
 
LVL 2

Author Comment

by:Dilan77
ID: 18053883
Brilliant, thanks a lot for the prompt help
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Here are the symptoms: You start receiving calls from users that one of your legacy web apps isn't coming up, so you log into your IIS 5 server to check it out.  When you pull up the services, you notice that the WWW Publishing service isn't runn…
First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question