HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

Hello

I have recently built a Software Update Service server on Windows 2003.

When I am trying to launch the config page (http://<machine_name>/SUSAdmin), I receive the following error;

You are not authorized to view this page
You do not have permission to view this directory or page due to the access control list (ACL) that is configured for this resource on the Web server.
HTTP Error 401.3 - Unauthorized: Access is denied due to an ACL set on the requested resource

The IIS version is 6.0. Anonymous access is being used with IUSR_<machine_name> account.

Any IIS gurus out there to help?
LVL 2
Dilan77Asked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
AndresMConnect With a Mentor Commented:
In IIS MMC, in the properties of the virtual dir SUSAdmin, security tab, what happens if you configure only windows authentication?
0
 
AndresMCommented:
see if IUSR_<machine_name> has READ permissions under the directory where is configured /SUSAdmin
0
 
Dilan77Author Commented:
Do you mean the directory in C or D drive, or the directory of the web content?
0
Learn to develop an Android App

Want to increase your earning potential in 2018? Pad your resume with app building experience. Learn how with this hands-on course.

 
AndresMCommented:
I mean NTFS permissions. To see wich directory is configured under /SUSAdmin, open IIS manager, right-click SUSAdmin virtual dir, and choose Open. Then see if IUSR_<machine_name> has read permissions on that folder.
0
 
Dilan77Author Commented:
Thanks.

The user wasn't there, I added the user and gave it READ writes, however I'm still getting this error.
0
 
Dilan77Author Commented:
that seems to work...excellent.

is there any downside to keeping at this (apart from the need to log into the SUS site, which is not necessarily a bad thing)?
0
 
AndresMCommented:
No, it depends on your needs, but I think that a SUSAdmin site should have windows authentication, not anonymous, for security reasons. I would also restrict NTFS permissions to admins only, or something like that.
0
 
Dilan77Author Commented:
Brilliant, thanks a lot for the prompt help
0
All Courses

From novice to tech pro — start learning today.