asked on
IIS7.5 - You do not have permission to view this directory or page using the credentials that you supplied.
I am getting the following error on IIS7.5 (Windows 2008 R2 Server) on any DotNet site running (copied over from an IIS6 W2K3 Server) on IIS.
"403 - Forbidden: Access is denied."
"You do not have permission to view this directory or page using the credentials that you supplied."
I have forms authentication on all the web.config files.
The IUSR account had read/execute privileges in all the affected DotNet sites, and files.
URL authorization role is installed.
Basic authentication is installed.
default pages are set - "default.aspx"
still no luck - what other settings are required on a new IIS7.5 setup? What other security settings are needed?
"403 - Forbidden: Access is denied."
"You do not have permission to view this directory or page using the credentials that you supplied."
I have forms authentication on all the web.config files.
The IUSR account had read/execute privileges in all the affected DotNet sites, and files.
URL authorization role is installed.
Basic authentication is installed.
default pages are set - "default.aspx"
still no luck - what other settings are required on a new IIS7.5 setup? What other security settings are needed?
Microsoft IIS Web ServerASP.NETWindows Server 2008
Last Comment
Valliappan AN
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
ASKER
Do I need to create an account called "DefaultAppPool" or "IIS AppPool" ?
I can find neither account on the system.
The sites are in a folder called "sites" (so it's not the default)
I can find neither account on the system.
The sites are in a folder called "sites" (so it's not the default)
ASKER
okay, it's hidden (why would they hide this account from the GUI is beyond me) - i typed it in directly
IIS APPPOOL\DefaultAppPool
I granted that account full access to the sites folder, still no luck. :(
IIS APPPOOL\DefaultAppPool
I granted that account full access to the sites folder, still no luck. :(
ASKER
I tried also using the command line tool:
icacls e:\sites /grant "IIS APPPOOL\DefaultAppPool":(O
no luck, there. (the command works fine, but these permissions are not helping, either)
gave full control to IIS_IUSRS and IUSR
still no luck.
icacls e:\sites /grant "IIS APPPOOL\DefaultAppPool":(O
no luck, there. (the command works fine, but these permissions are not helping, either)
gave full control to IIS_IUSRS and IUSR
still no luck.
ASKER
I just tried "Everyone" with full control. Still no dice.
I'll try NetworkService tomorrow. must.. get... sleep...
I'll try NetworkService tomorrow. must.. get... sleep...
http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx