bd9000
asked on
IIS7.5 - You do not have permission to view this directory or page using the credentials that you supplied.
I am getting the following error on IIS7.5 (Windows 2008 R2 Server) on any DotNet site running (copied over from an IIS6 W2K3 Server) on IIS.
"403 - Forbidden: Access is denied."
"You do not have permission to view this directory or page using the credentials that you supplied."
I have forms authentication on all the web.config files.
The IUSR account had read/execute privileges in all the affected DotNet sites, and files.
URL authorization role is installed.
Basic authentication is installed.
default pages are set - "default.aspx"
still no luck - what other settings are required on a new IIS7.5 setup? What other security settings are needed?
"403 - Forbidden: Access is denied."
"You do not have permission to view this directory or page using the credentials that you supplied."
I have forms authentication on all the web.config files.
The IUSR account had read/execute privileges in all the affected DotNet sites, and files.
URL authorization role is installed.
Basic authentication is installed.
default pages are set - "default.aspx"
still no luck - what other settings are required on a new IIS7.5 setup? What other security settings are needed?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Do I need to create an account called "DefaultAppPool" or "IIS AppPool" ?
I can find neither account on the system.
The sites are in a folder called "sites" (so it's not the default)
I can find neither account on the system.
The sites are in a folder called "sites" (so it's not the default)
ASKER
okay, it's hidden (why would they hide this account from the GUI is beyond me) - i typed it in directly
IIS APPPOOL\DefaultAppPool
I granted that account full access to the sites folder, still no luck. :(
IIS APPPOOL\DefaultAppPool
I granted that account full access to the sites folder, still no luck. :(
ASKER
I tried also using the command line tool:
icacls e:\sites /grant "IIS APPPOOL\DefaultAppPool":(O I)(CI)(RX)
no luck, there. (the command works fine, but these permissions are not helping, either)
gave full control to IIS_IUSRS and IUSR
still no luck.
icacls e:\sites /grant "IIS APPPOOL\DefaultAppPool":(O
no luck, there. (the command works fine, but these permissions are not helping, either)
gave full control to IIS_IUSRS and IUSR
still no luck.
ASKER
I just tried "Everyone" with full control. Still no dice.
I'll try NetworkService tomorrow. must.. get... sleep...
I'll try NetworkService tomorrow. must.. get... sleep...
http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx