HELP!!! Trying to migrate from IIS 6 to IIS 7.5

Hi, I was wondering if there was any tool kits or something that would make migrating from IIS 6 to IIS 7.5 on Server 2008 R2?

I have manually copied over the IIS 6 website data, but am unable to view it in a IE browser.

So, I am wondering what I have missed for the IIS 7.5 setup.

Thanks in advance.
rsnellmanIT ManagerAsked:
Who is Participating?
 
Gladys KernsConnect With a Mentor Commented:
Ok... I recently migrated a "classic" .net site from IIS6 to IIS7.5... the permissions on my wwwroot look like this:

Everyone - Read&Exec, List, Read
System - Full
IIS_IUSRS (from the local machine group) - Read&Exec, List, Read

Setting the "everyone" group might not be the best idea...

and then in IIS Manager - with the Site Selected... under the IIS Section... Authentication has
Anonymous Authentication - Enabled


----

Start with that... there's a lot of other things to check but it seems like it should be related to one of these things.
0
 
Gladys KernsCommented:
what happens when you try to open your site?  What kinds of errors?

What if you try to "browse" locally from within the IIS Management interface?
0
 
rsnellmanIT ManagerAuthor Commented:
I will to get back to you on the error when I get back to the office.  
0
Simplify Active Directory Administration

Administration of Active Directory does not have to be hard.  Too often what should be a simple task is made more difficult than it needs to be.The solution?  Hyena from SystemTools Software.  With ease-of-use as well as powerful importing and bulk updating capabilities.

 
rsnellmanIT ManagerAuthor Commented:
OK, I decided to remote in so I could get some answers sooner than waiting until next week when I am back in the office.

Here is the error I get when I try browsing within IIS:

HTTP Error 401.3 - Unauthorized.

I figured it is a permissions issue, but I am unsure what users, groups I need to add to the ACL of the folder for anyone to view via a browser.

Here is the current list of permissions for the wwwroot folder:

SYSTEM
NETWORK
NETWORK SERVICE
IIS_WPG
Administrator
Administrators
IIS_IUSRS
INTERACTIVE
TrustedInstaller

Reason I have most of these in the list, that is what the old IIS 6 settings wwwroot folder were.
0
 
Gladys KernsCommented:
Ok - folder permissions are important and valid but not the only type of Auth that your server is looking for...

Is this a .Net application?

This may be useful:  http://www.bloggingdeveloper.com/post/HTTP-Error-4013-Unauthorized-Error-While-creating-IIS-70-web-site-on-Windows-Vista.aspx

What happens when you attempt to browse the site locally from within IIS?  If you click on your site on the left-side of the management window and then click "browse..." on the right side under the action pane... you'll probably still get that error but there should be some more detail ABOUT the error.
0
 
Gladys KernsCommented:
also - is the IIS_WPG and IIS_IUSRS entry a local user copied over from your old server or are they valid on the local machine of the new server?
0
 
rsnellmanIT ManagerAuthor Commented:
OK, I decided to remove the accounts that I manually added to the wwwroot folder and unshared the wwwroot folder.

Removed
NETWORK
NETWORK SERVICE
IIS_WPG
IIS_IUSRS
INTERACTIVE

Now when I attempt to browse within IIS, I receive the following error:

HTTP Error 500.19 - Internal Server Error

Module: IIS Web Core
Notification: Unknown
Handler: Not yet determined
Error Code: 0x80070005
Config Error: Cannot read configuration file due to insufficient permissions
Config File: \\?\C:\inetpub\wwwroot\web.config

0
 
rsnellmanIT ManagerAuthor Commented:
OK, I was able to get it displaying within IIS by adding Everyone with R&E, L, R.  Just like you said, but I was wondering if there is a better way to do grant permissions to anyone wanting to view our website via web browser?

Here is the list of permissions for the Inetpub folder now.

Everyone - Read&Execute, List, Read
SYSTEM - Full Control
Administrator (local account) - Full Control
Administrators (local group account) - Full Control
IIS_IUSRS (local account) - Read&Execute, List, Read
TrustedInstaller - Full Control

Most of these accounts were applied by default from the Server 2008 R2.

Thanks.
0
 
rsnellmanIT ManagerAuthor Commented:
Oh, yes, it is running Anonymous Authentication.
0
 
rsnellmanIT ManagerAuthor Commented:
Anyone?  A better way to grant permission for anonymous viewers to our website outside of our company other than Everyone?
0
 
rsnellmanIT ManagerAuthor Commented:
How about a more secure way than just using Everyone with Read, Read & Execute, List permissions?
0
All Courses

From novice to tech pro — start learning today.